بدافزار فعال کروم ، حتی با نصب مجدد حذف نشد

سلام ،
مدتی Avast در حال ورود به Malware-Gene در فرآیند chrome.exe است و به milkpload.net وصل می شود. من بدافزارهایی را امتحان کرده ام که هیچ گونه تهدید و اعتصابی را شناسایی نکرده اند که مسئله را تشخیص داده و ظاهراً آن را حذف کرده است ، با این حال پس از بازگشایی مجدد مخرب های کرومی. نصب مجدد Chrome نیز کمکی نکرد. مسئله این است که من هم اکنون در مورد تلاش برای نقض حساب های مختلف ایمیل دریافت کرده ام ، بنابراین می ترسم این موضوع به جای برخی از تبلیغات تبلیغاتی بی ضرر باشد. از هر کمکی بسیار قدردانی خواهد شد. [اسکنشدههایFRSTپیوست

نتیجه اسکن ابزار اسکن بازیابی Farbar (FRST) (x64) نسخه: 15-04-2020
Ran توسط Dorota (مدیر) در DESKTOP-JOAKH6R (MSI MS-7A71) (16-04 -2020 23:20:25)
در حال اجرا از C: کاربران Dorota AppData محلی بسته ها Microsoft.MicrosoftEdge_8wekyb3d8bbwe TempState بارگیری
پروفایل های بارگذاری شده: Dorota و OVRLibraryService (پروفایل های موجود: Dorota & OV)
بستر های نرم افزاری: Windows 10 Pro نسخه 1909 18363.535 (X64) زبان: چک (چک)
مرورگر پیش فرض: "C: Files Program (x86) AVAST Software Browser Application AvastBrowser.exe" – " ٪ 1 "
Boot Mode: Normal
آموزش ابزار اسکن بازیابی فرار: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery- scan-tool /

===================== پردازش (لیست سفید) ================== [19659002] (اگر یک ورودی در لیست ثابت وجود داشته باشد ، روند بسته خواهد شد. پرونده منتقل نمی شود.)

(Avast Software sro . -> نرم افزار AVAST) C: File Files (x86) AVAST Software Browser Application AvastBrowser.exe <15>
(AVAST Software sro -> AVAST Software) C: Files Program (x86) AVAST Software Browser بروزرسانی 1.4.154.333 AvastBrowserCrashHandler.exe
(نرم افزار AVAST sro -> نرم افزار AVAST) C: Files Programs (x86) AVAST Software Browser Update 1.4.154.333 AvastBrowserCrashHandler64.exe [19459002sro->نرمافزارAVAST)C:FileFilesSoftwareAVASTAvastaswEngSrvexe
(Avast Software sro -> نرم افزار AVAST) C: File Files Software AVAST Avast aswidsagent.exe
( Avast Software sro -> نرم افزار AVAST) C: File Files Software AVAST Avast AvastNM.exe
(Avast Software sro -> AVAST Software) C: File Files Software AVAST Avast AvastSvc.exe
(Avast Software sro -> نرم افزار AVAST) C: Program Files Software AVAST Avast AvastUI.exe <3>
(Avast Software sro -> نرم افزار AVAST) C: Program Files Software AVAST Avast wsc_proxy.e xe
(شركت Corel -> WinZip Computing) C: File Files WinZip WzPreloader.exe
(شركت Corel -> WinZip Computing، SL) C: Files Programs WinZip FAHWindow64.exe
(Corsair Memory، Inc. -> Corsair Memory، Inc.) C: File Files (x86) Corsair CORSAIR iCUE Software Corsair.Service.CpuIdRemote64.exe
(Corsair Memory، Inc. -> حافظه Corsair، شرکت) C: File Files (x86) Corsair CORSAIR iCUE Software Corsair.Service.DisplayAdapter.exe
(Corsair Memory، Inc. -> Corsair Memory، Inc.) C: Files Program (x86) Corsair CORSAIR iCUE Software Corsair.Service.exe
(Corsair Memory، Inc. -> Corsair Memory، Inc.) ج: فایلهای برنامه (x86) Corsair CORSAIR iCUE نرم افزار iCUE.exe
(Discord Inc. -> Discord Inc.) C: Users Dorota AppData Local Discord app-0.0.306 Discord.exe <6>
(Electronic Arts، Inc. -> Electronic Arts) C: Program پرونده ها (x86) Origin OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games، Inc.) C: Files Program (x8 6) Epic Games Launcher Engine Binaries Win64 UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games، Inc.) C: Files Program (x86) Games Epic Launcher Portal Binaries Win64 EpicGamesLauncher.exe
(Google LLC -> Google LLC) C: Files Program (x86) Google Chrome Application chrome.exe <16>
(Google LLC -> Google LLC) C: Program پرونده ها (x86) Google Update 1.3.35.452 GoogleCrashHandler.exe
(Google LLC -> Google LLC) C: Files Program (x86) Google Update 1.3.35.452 GoogleCrashHandler64.exe
(Kerio Technologies، Inc. -> Kerio Technologies Inc.) C: File Files (x86) Kerio VPN Client kvpncsvc.exe
(Malwarebytes Inc -> Malwarebytes) C: File Files Malwarebytes Anti- Malware MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C: Program Files Malwarebytes Anti-Malware mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C: Files Program (x86) Microsoft GameInput x64 gameinputsvc.exe <2>
(شرکت مایکروسافت -> میکروسکو ft Corporation) C: File Files Files Common microsoft shared ClickToRun OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C: File Files Microsoft SQL Server 90 Shared sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C: Users Dorota AppData Local Microsoft OneDrive OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C: Windows SystemApps Microsoft.MicrosoftEdge_8wekyb3d8bbwe MicrosoftEdge .exe
(Microsoft Corporation) C: File Files WindowsApps Microsoft.GamingService_2.40.7001.0_x64__8wekyb3d8bbwe GamingService.exe
(Microsoft Corporation) C: Program Files WindowsApps Microsoft.GamingSbw8_b GamingServiceNet.exe
(Microsoft Corporation) C: File Files WindowsApps Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe Calculator.exe
(Microsoft Corporation) C: Program Files WindowsApps Microsoft.11.0 .0_x64__8wekyb3d8bb ما WinStore.App.exe
(Microsoft Corporation) C: Files Programs WindowsApps Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows ImmersiveControlPanel SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 dllhost.exe [19659006] (Microsoft Windows -> Microsoft Corporation) C: Windows System32 MicrosoftEdgeCP.exe <8>
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation ) C: Windows System32 mspaint.exe <2>
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows System32 Taskmgr.exe
(مایکروسافت باد بدهی -> Microsoft Corporation) C: Windows SysWOW64 cmd.exe
(Microsoft Windows -> Microsoft Corporation) C: Windows SysWOW64 wbem WmiPrvSE.exe
(NVIDIA Corporation -> Node.js ) C: File Files (x86) NVIDIA Corporation NvNode NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C: File Files NVIDIA Corporation Display.NvContainer NVDisplay.Container.exe [19659009] (NVIDIA Corporation -> NVIDIA Corporation) C: File Files NVIDIA Corporation NvContainer nvcontainer.exe <2>
(Oculus VR، LLC -> Facebook Technologies، LLC) C: File Files Oculus پشتیبانی oculus -runtime OVRRedir.exe
(Oculus VR، LLC -> Facebook Technologies، LLC) C: Files Programs Oculus پشتیبانی okulus-runtime OVRServer_x64.exe
(Oculus VR، LLC -> Facebook Technologies ، LLC) C: File Files Oculus پشتیبانی oculus-runtime OVRServiceLauncher.exe
(SurfRight BV -> SurfRight BV) C: File Files HitmanPro hmpsched.exe
(Xiaomi Technology Inc – >) C: U sers Dorota AppData Local MiPhoneManager main MiPhoneHelper.exe

====================== رجیستری (لیست سفید) ======== ============

(در صورت وارد کردن یک لیست در لیست اصلاح ، مورد رجیستری به طور پیش فرض باز می شود یا حذف می شود. پرونده منتقل نمی شود.)

HKLM … Run: [AvastUI.exe] => C: File Files Software AVAST Avast AvLaunch.exe [108216 2020-04-15] (Avast Software sro -> نرم افزار AVAST)
HKLM … Run: [AdobeGCInvoker-1.0] => C: Files Program (x86) Files Common Adobe AdobeGCClient AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems Incorporated -> Adobe Systems، Incorporated)
HKLM … Run: [AdobeAAMUpdater-1.0] => C: Files Program (x86) Files مشترک Adobe OOBE PDApp UWA UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated )
HKLM … Run: [WinZip UN] => C: File Files WinZip WZUpdateNotifier.exe [2814096 2020-02-20] (شرکت Corel -> شرکت Corel)
HKLM … Run: [WinZip FAH] => C: File Files WinZip FAHConsole.exe [436704 2020-02-20] (شركت Corel -> WinZip Computing، SL)
HKLM-x32 … Run: [Kerio Control VPN Client] => C: پرونده های برنامه (x86) Kerio VPN Client kvpncgui.exe [2072400 2018-03-22] (Kerio Technologies، Inc. -> Kerio Technologies Inc)
HKLM-x32 … Run: [CORSAIR iCUE Software] => C: File Files (x86) Corsair CORSAIR iCUE Software iCUE Launcher.exe [405032 2019-01-29] (Corsair Memory، Inc. -> Corsair Memory، Inc)
HKU S-1-5 -21-2096388356-1422183332-1631676226-1001 … Run: [MiPhoneManager] => C: Users Dorota AppData Local MiPhoneManager main MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc ->)
HKU S-1-5-21-2096388356-1422183332-1631676226-1001 … Run: [AvastBrowserAutoLaunch_14E85AF3692C5FC7D9AA058B97729F46] => C: Files Programs (x86) نرم افزار AVAST مرورگر برنامه AvastBrowser. exe [1868352 2020-04-02] (نرم افزار Avast sro -> نرم افزار AVAST)
HKU S-1-5-21-2096388356-1422183332-1631676226-1001 … Run: [Steam] => C: Files Program (x86) بخار بخار. exe [3371296 2020-04-04] (Valve -> Valve Corporation)
HKU S-1-5-21-2096388356-1422183332-1631676226-1001 … Run: [uTorrent] => C: Users Dorota AppData رومینگ uTorrent uTorrent.exe [2072816 2020-04-09] (شرکت BitTorrent -> شرکت BitTorrent.)
HKU S-1-5-21-2096388356-1422183332-1631676226-1001 … Run: [19459040Inc] => C: Files Program (x86) Epic Games Launcher Portal Binaries Win64 EpicGamesLauncher.exe [31740816 2020-04-16] (Epic Games Inc. -> Epic Games، Inc)
HKU S-1 -5-21-2096388356-1422183332-1631676226-1001 … Run: [Discord] => C: Users Dorota AppData Local Discord app-0.0.306 Discord.exe [90950968 2020-02-24] ( Discord Inc. -> Discord Inc.)
HKU S-1-5-21-2096388356-1422183332-1631676226-1001 … RunOnce: [Application Restart #3] => D: _ Programy VisualStudio Common7 IDE devenv.exe [744864 2020-03-24] (Microsoft Corporation -> Microsoft Corporation)
HKU S-1-5-80-3238277391- 1891473654-1195688043-4149050645-2494734967 … RunOnce: [WAB Migrate] => C: File Files Windows Mail wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM Software Microsoft تنظیم فعال مؤلفه های نصب شده: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C: Files Program (x86) Google Chrome Application 81.0.4044.113 Installer chrmstp.exe [2020-04-16] (Google LLC -> Google LLC)
HKLM نرم افزار Wow6432Node مایکروسافت تنظیم فعال مؤلفه های نصب شده: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C: Files Program (x86) AVAST Software Browser Application 80.1.3901.163 Installer chrmstp.exe [2020-04-16] (Avast Software SRO -> نرم افزار AVAST)
IFEO LogTransport2.exe: [Debugger] 0
راه اندازی: C: ProgramData مایکروسافت ویندوز منوی شروع برنامه ها راه اندازی WinZip Preloader.lnk [2020-03-24]
میانبر هدف: WinZip Preloader .lnk -> C: File Files WinZip WzPreloader.exe (Corel Corporation -> WinZip Computing)
BootExecute: autocheck autochk * bootdelete
GroupPolicy: محدودیت؟ <==== توجه
FF HKLM نرم افزار سیاست ها موزیلا Firefox: محدودیت <==== توجه
CHR HKLM نرم افزار سیاست ها Google: محدودیت <==== توجه

= ============================================================================================================================================================================================================================================================= را از رجیستری حذف می شود. پرونده منتقل نمی شود مگر اینکه به طور جداگانه ذکر شود.)

کار: 35 0135C2C1-6CC2-404A-9D0B-1E133CB13FF3} – System32 Tasks NvProfileUpdaterDaily_ _ B2FE1952-0186A46C => C: File Files NVIDIA Corporation Update Core NvProfileUpdater64.exe [914456 2019-12-08] (شرکت NVIDIA -> شرکت NVIDIA)
کار: {0773631A-E009-4683-B35D-BBC6725539CE ks – System32 AdobeAAMUpdater-1.0-DESKTOP-JOAKH6R-Dorota => C: Files Program (x86) Files Common Adobe OOBE PDApp UWA UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) [19459] وظیفه: A 0A05F17E-8267-4BC2-AC08-3891FE4340ED} – System32 وظایف NvProfileUpdater OnLogon_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: فایلهای برنامه NVIDIA شرکت به روزرسانی هسته NvProfileUpdater64.exe [914456 2019-12-08] (شرکت انویدیا -> شرکت انویدیا) [1945900-] 42BA-8D5D-176834F8DAE9} – System32 Tasks NVIDIA GeForce Experience SelfUpdate_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: File Files NVIDIA Corporation NVIDIA GeForce تجربه NVIDIA Corporation -> NVIDIA Corporation)
وظیفه: 1 171D7B93-D34D-405F-8972-E7D8CE517FA7} – System32 Tasks Microsoft Office OfficeTelemetryAgentFallBack2016 => C: Program Files Microsoft Office root 16 Office exe [6147688 2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {18AE15D2-85C6-405D-A773-942B05866042} – System32 Tasks AdobeGCInvoker-1.0-DESKTOP-JOAKH6R-Dorota => C: Program: x86) فایلهای معمول Adobe AdobeGCClient AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems Incorporated -> Adobe Systems، Incorporated)
کار: {1E12BE 9E-9079-4BE6-8CB1-A78B647A9291} – System32 وظایف NvBatteryBoostCheckOnLogon_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Program NXTV شرکت > NVIDIA شرکت)
وظیفه: {1F46AFAD-A597-4DCB-973D-C1329FC33276} – آدرس system32 وظایف NvTmRep_CrashReport4_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: برنامه فایلها NVIDIA شرکت NvBackend NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: E 40E825C3-6315-4FA0-B194-9252F30C520B – System32 Tasks NvDriverUpdateCheckD Daily_ 8A2-AA2AA2A-B201-AA2-4A2-4A2-4A2-4A2-A2-A2-A2-A2-A2-A2-A2-A2-A2-A2-A2-A2- A2-A2-A2-A2-A2-A2- A2-A2- A2-A2- A2-A2-A2-4 : File Files NVIDIA Corporation NvContainer nvcontainer.exe [858480 2019-12-05] (شرکت NVIDIA -> شرکت NVIDIA)
وظیفه: {4F63069D-2915-4A3D-80E3-65CA905A156B} – System32 dTAAAA Task File Files (x86) Google Update GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
کار: {5C01CF36-F557-42A3-9A1E-EEF9EEC89051 – System32 Task AvastUpdateTaskMachineCore => C: Files Program (x86) AVAST Software Browser Update AvastBrowserUpdate.exe [164984 2018-07-29] (AVAST Software s.r.o. -> نرم افزار AVAST)
Task: {66455EE1-7EBA-49B9-A066-11DE134AE8B9} – System32 Tasks Microsoft Office Office ClickToun Monitor Monitor => C: File Files Common Common Microsoft Shared ClickToRun OfficeC2RClient.exe [24702024 2020-03-30] (Microsoft Corporation -> Microsoft Corporation)
وظیفه: E 6E58F9B5-7E68-44A3-985C-FAC5143769AF} – System32 Tasks Avast Secure ضربان قلب مرورگر امن (ساعتی) => برنامه (x86) AVAST Software Browser Application AvastBrowser.exe [1868352 2020-04-02] (Avast Software sro -> AVAST Software)
کار: {72B09FA8-2491-4ADC-A4FA-1ABFFCFADABE} – System32 Tasks WinZip Update 3 => C: File Files WinZip WZUpdateNotifer.exe [2814096 2020-02-20] (شرکت Corel -> شرکت Corel)
کار: {7AC1AEAA-3513-4E8E-97BF-25D759C014F0 System – System32 Tasks Avast => C: Files Programs File Files Software AVAST Overseer overseer.exe [1660520 2020-02-27] (Avast Software sro -> Avast Software)
وظیفه: {81C12972-C747-4AC8-9AFE-E655770B39A5} – S ystem32 Tasks WinZip Update Notifier 2 => C: File Programs WinZip WZUpdateNotifier.exe [2814096 2020-02-20] (شركت Corel -> شركت Corel)
وظیفه: B 86B59025-3E1C-45BA-A3B9-11EAAB0C18B وظایف بهینه سازی پرونده هشدار از طریق فشار فایل-S-1-5-21-2096388356-1422183332-1631676226-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D C: WINDOWS System32 wpninprc.dll [194590(MicrosoftWindows->MicrosoftCorporation)
Task: {8DC2C3EF-3949-4FD6-BDEE-760AC510413E – System32 Tasks Avast Emergency Update => C: File Files Avast AvEmUpdate.exe [3325032 2020-04-15] (Avast Software sro -> نرم افزار آنتی ویروس avast)
وظیفه: {8E63158D-E4E2-4BF4-BD81-B9F3B94F4F48} – آدرس system32 وظایف NvTmRep_CrashReport3_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: برنامه فایلها NVIDIA شرکت NvBackend NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
وظیفه: {9E40FE1D-395D-4C9B-944E-EBCC010AFF43} – System32 Tasks Microsoft Office Office Updates Feet Logon => C: پرونده ها Microsoft Office root Office16 sdxhelper.exe [158760 2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
وظیفه: {AA5E9B96-4812-4E1A-8B93-1FF28189518E – System32 Tasks Microsoft Office Office Feature به روزرسانی => C: پرونده های برنامه Microsoft Office root Office16 sdxhelper.exe [158760 2020-04-09] (شرکت مایکروسافت -> شرکت مایکروسافت)
کار: {B40C1076-64AF-47B9-8D06-61C6FFE7CB3E – System32 Tasks GoogleUpdateTaskMachineCore => C: فایلهای برنامه (x86) Google بروزرسانی GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
کار: {B6792567-6D2F-44C3-9A9D-D2E7CFAEB67A System 2 وظایف NvTmRep_CrashReport2_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Files Programs NVIDIA Corporation NvBackend NvTmRep.exe [1134104 2019-12-08] (NVIDC2 Corporation) -A27A-43E5-8CD1-95157F1C5D76} – System32 Tasks Microsoft Office OfficeTelemetryAgentLogOn2016 => C: File Files Microsoft Office root Office16 msoia.exe [6147688 2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
کار: {CB0BE985-0471-4EDE-86D6-BF8110B4A19B – System32 وظایف مایکروسافت Office Office به روزرسانی های خودکار 2.0 => C: فایلهای برنامه فایلهای معمول Microsoft Shared ClickToRun OfficeC2RClient.exe [24702024 2020-03-30] شرکت مایکروسافت -> شرکت مایکروسافت)
کار: {D19A6931-1E6E-4632-8268-CA7AE4038874} – System32 Tasks NvNodeLauncher_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8 Program برنامه = (>)> iles = برنامه] شرکت انویدیا NvNode nvnodejslauncher.exe [653848 2019-12-08] (شرکت انویدیا -> شرکت انویدیا)
وظیفه: {D9354F99-B603-4CD8-9B73-81472DAE4BEA – System32 Tas ks NvTmRep_CrashReport1_ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C: Files Programs NVIDIA Corporation NvBackend NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA9) -4CA3-A703-15CC2E413D46 – System32 Tasks Avast Secure ضربان ضربان قلب مرورگر (ورود به سیستم) => C: Files Program (x86) AVAST Software Browser Application AvastBrowser.exe [1868352 2020-04-02] (Avast Software sro -> نرم افزار AVAST)
وظیفه: {ED3977B6-C2AB-4EA3-9D27-CD45CBFC8B90} – System32 Tasks Adobe Flash Player PPAPI Notifier => C: WINDOWS SysWOW64 Macromed Flash FlashUtil32_32_0_0_0 (Adobe Inc. -> Adobe)
Task: {EFC9BDB9-5BD2-4000-99B2-E39140CC0A37} – System32 Tasks WinZip Update Notifier 1 => C: Files Programme WinZip WZUpdateNotifier.exe [19459025شرکتCorel->شرکتCorel)
وظیفه: {F0FEC772-0C7B-499F-AA7B-0816E9677AD3} – System32 Tasks AvastUpdateTaskMachineUA => C: FilesF Program (x86) AVAST نرم افزار مرورگر آپدیت. [164984 2018-07-29] (نرم افزار AVAST sro -> نرم افزار AVAST)

(در صورتی که در فهرست تنظیمات درج باشد ، پرونده وظیفه (.job) منتقل می شود. پرونده ای که توسط کار اجرا می شود منتقل نمی شود.)

===================== اینترنت (لیست سفید) ======================

(اگر یک آیتم در لیست ثابت قرار داشته باشد ، اگر این یک آیتم رجیستری باشد ، به صورت پیش فرض برداشته یا بازیابی می شود.)

Tc pip پارامترها: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip .. Interfaces {71a1b8f1-4a0b-46bf-98f8-c279873ecb3f}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet
==================
SearchScopes: HKU S-1-5-21-2096388356-1422183332-1631676226-1001 -> {BDF61FAE-9D19- 40F0-8F34-688DEB334CA9} URL = hxxp: //securedsearch.lavasoft.com/results.php؟ pr = vmn & id = webcompa & ent = ch_WCYID10454__190207 & q = {searchTerms}
BHO: DS01 – DS04 – DS04 – DS04 – DS04 – DS04 – DS04 – DS04-D04 – 4CCE-BE8A-2923E76605DA} -> C: File Files Microsoft Office root Office16 OCHelper.dll [2020-01-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> 31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C: File Files Microsoft Office root VFS ProgramFilesX86 Microsoft Office Office16 OCHelper.dll [2020-01-18] (Microsoft Corporation -> Microsoft Corporation)
Handler : mso-minsb-رومینگ.16 – C 83C25742-A9F7-49FB-9138-434302C88D07} – C: فایلهای برنامه Microsoft Office root Office16 MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 – {83C25742-A9F7-49FB-9138-434302C88D07 – C: File Files Microsoft Office root VFS ProgramFilesX86 Microsoft Office Office16 MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 – 20 42089D2D-912D-4018- 9087-2B87803E93FB} – C: File Files Microsoft Office root Office16 MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 – 20 42089D2D-912D- 4018-9087-2B87803E93FB} – C: File Files Microsoft Office root VFS ProgramFilesX86 Microsoft Office Office16 MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-رومینگ. 16 – 20 42089D2D-912D-4018-9087-2B87803E93FB} – C: File Files Microsoft Office root Office16 MSOSB.DLL [2020-04-09] (شرکت مایکروسافت -> شرکت مایکروسافت)
Handler-x32: osf- رومینگ.16 – 20 42089D2D-912D-4018-9087-2B87803E93FB – C: File Files Microsoft Office root VFS ProgramFilesX86 Microsoft Office Office16 MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler : osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A – C: Files Programs Microsoft Office root Office16 MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32 : osf.16 – {5504BE45-A83B-4808-900A-3A5C36E7F77A – C: File Files Microsoft Office root VFS ProgramFilesX86 Microsoft Office Office16 MSOSB.DLL [2020-04-09] (Microsoft Corporation -> Microsoft Corporation )

FireFox:
========
FF Plugin: @ microsoft.com / SharePoint، version = 14.0 -> C: File Files Microsoft Office root Office16 NPSPWRAP. DLL [2020-01-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C: Files Programs (x86) Adobe Adobe Creative Cloud Utils npAdobeAAMDetect64.dll [2017-09-20] (Adobe سیستم های موجود -> Ado be systems)
FF Plugin-x32: @ microsoft.com / Lync، version = 15.0 -> C: File Files Microsoft Office root VFS ProgramFilesX86 Mozilla Firefox plugins npmeetingjoinpluginoc.dll [2019-12-07] ( Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @ microsoft.com / SharePoint، version = 14.0 -> C: Files Programs Microsoft Office root VFS ProgramFilesX86 Microsoft Office Office16 NPSPWRAP.DLL [2020-01-18] (شرکت مایکروسافت -> شرکت مایکروسافت)
FF Plugin-x32: @ videolan.org / vlc، نسخه = 3.0.0 -> C: فایلهای برنامه (x86) VideoLAN VLC npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: @ videolan.org / vlc، version = 3.0.4 -> C: Files Programs (x86) VideoLAN VLC npvlc.dll [2018-08-09] ( VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C: Files Programs (x86) Adobe Adobe Creative Cloud Utils npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe سیستم ها)

Chrome:
=======
پروفایل CHR: C: کاربران Doro ta AppData Local Google Chrome داده های کاربری پیش فرض [2020-04-16]
CHR پسوند: (اسلایدها) – C: کاربران Dorota AppData محلی Google Chrome داده های کاربر پیش فرض برنامه های افزودنی aapocclcgogkmnckokdopfmhonfmgoek [2018-02-20]
پسوند CHR: (اسناد) – C: کاربران Dorota AppData محلی Google Chrome داده های کاربر پیش فرض برنامه های افزودنی aohghmighlieiainnegkcijnfilokake [2018-02-20]
CHR پسوند: (Google Drive) – C: کاربران Dorota AppData محلی Google Chrome داده های کاربر پیش فرض برنامه های افزودنی apdfllckaahabafndbhieahigkjlhalf [2018-02-20]
CHR پسوند: (یوتیوب) – C: کاربران Dorota AppData محلی Google Chrome داده های کاربر پیش فرض پسوند blpcfgokmgnkcojhhkbn90 پسوند CHR: (برگه) – C: کاربران Dorota AppData محلی Google Chrome داده های کاربر پیش فرض برنامه های افزودنی felcaaldnbdncclmgdcncolpebgiejap [2018-02-20]
CHR پسوند: (Google Docs آفلاین) – C: کاربران Dorota AppData محلی Google Chrome اطلاعات کاربر پیش فرض برنامه های افزودنی ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-16]
CHR پسوند: (Kindle Cloud Reader) – C: کاربران Dorota AppData محلی Go ogle Chrome داده های کاربری پیش فرض برنامه های افزودنی icdipabjmbhpdkjaihfjoikhjjeneebd [2019-12-25]
CHR پسوند: (پرداخت های فروشگاه وب Chrome) – C: کاربران Dorota AppData محلی Google Chrome داده های کاربر پیش فرض پسوند nmmhkkegccagdldgiimededicced ] CHR Extension: (Vimeo Downloader Professional) – C: کاربران Dorota AppData محلی Google Chrome داده کاربر پیش فرض برنامه های افزودنی ocaallccmjamifmbnammngacjphelonn [2020-03-22]
CHR پسوند: (Gmail) – C: کاربران Dorota AppData Local Google Chrome داده های کاربر پیش فرض پسوند pjkljhegncpnkpknbcohdijeoejaedia [2019-05-04]
CHR پسوند: (Chrome Media Router) – C: کاربران Dorota AppData محلی Google Chrome داده های کاربر پیش فرض پسوند pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-16]
CHR HKLM-x32 … Chrome Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

===================== خدمات (لیست سفید) === =================

(اگر مدرکی در لیست فیش موجود باشد ، از رجیستری حذف می شود). پرونده منتقل نمی شود مگر اینکه به طور جداگانه ذکر شود.)

S3 AdobeUpdateService؛ C: File Files (x86) Files Common Adobe Adobe Desktop Common ElevationManager AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S4 AGSService؛ C: Files Programs (x86) Files Common Adobe AdobeGCClient AGSService.exe [2319848 2018-01-05] (Adobe Systems Incorporated -> Adobe Systems، Incorporated)
R3 aswbIDSAgent؛ C: برنامه های فایلها نرم افزار AVAST Avast aswidsagent.exe [5504928 2020-04-15] (Avast Software s.r.o. -> نرم افزار AVAST)
S2 avast؛ C: File Files (x86) AVAST Software Browser Update AvastBrowserUpdate.exe [164984 2018-07-29] (نرم افزار AVAST s.r.o. -> نرم افزار AVAST)
R2 avast! آنتی ویروس؛ ج: برنامه های فایلها نرم افزار AVAST Avast AvastSvc.exe [345384 2020-04-15] (Avast Software s.r.o. -> نرم افزار AVAST)
S3 avastm؛ C: File Files (x86) AVAST Software Browser Update AvastBrowserUpdate.exe [164984 2018-07-29] (نرم افزار AVAST s.r.o. -> نرم افزار AVAST)
S3 AvastSecureBrowserElevationService؛ C: File Files (x86) AVAST Software Browser Application 80.1.3901.163 elevation_service.exe [973760 2020-04-02] (Avast Software s.r.o. -> نرم افزار AVAST)
R2 AvastWscReporter؛ C: برنامه های فایلها نرم افزار AVAST Avast wsc_proxy.exe [58048 2020-04-15] (Avast Software s.r.o. -> نرم افزار AVAST)
S3 BEService؛ C: File Files (x86) Files Common BattlEye BEService.exe [8457232 2019-07-15] (نوآوری های BattlEye e.K. ->)
R2 ClickToRunSvc؛ C: File Files Files Common Microsoft Shared ClickToRun OfficeClickToRun.exe [10626328 2020-03-30] (شرکت مایکروسافت -> شرکت مایکروسافت)
R2 CorsairService؛ C: File Files (x86) Corsair CORSAIR iCUE Software Corsair.Service.exe [47656 2019-01-29] (Corsair Memory، Inc. -> Corsair Memory، Inc)
S3 EasyAntiCheat؛ C: File Files (x86) EasyAntiCheat EasyAntiCheat.exe [781440 2019-09-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 GameInput؛ C: File Files (x86) Microsoft GameInput x64 gameinputsvc.exe [48776 2020-04-07] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingService؛ C: File Files WindowsApps Microsoft.GamingService_2.40.7001.0_x64__8wekyb3d8bbwe GamingService.exe [46008 2020-04-16] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServiceNet؛ C: File Files WindowsApps Microsoft.GamingService_2.40.7001.0_x64__8wekyb3d8bbwe GamingServiceNet.exe [46008 2020-04-16] (شرکت مایکروسافت -> شرکت Microsoft)
R2 HitmanProScheduler؛ C: File Files HitmanPro hmpsched.exe [162392 2020-04-01] (SurfRight B.V. -> SurfRight B.V.)
R2 KVPNCSvc؛ C: File Files (x86) Kerio VPN Client kvpncsvc.exe [1988944 2018-03-22] (Kerio Technologies، Inc. -> Kerio Technologies Inc.)
R2 MBAMService؛ C: File Files Malwarebytes Anti-Malware MBAMService.exe [6960640 2020-01-22] (Malwarebytes Inc -> Malwarebytes)
R2 NvContainerLocalSystem؛ C: File Files NVIDIA Corporation NvContainer nvcontainer.exe [858480 2019-12-05] (شرکت NVIDIA -> شرکت NVIDIA)
S3 NvContainerNetworkService؛ C: File Files NVIDIA Corporation NvContainer nvcontainer.exe [858480 2019-12-05] (شرکت NVIDIA -> شرکت انویدیا)
S3 Origin Service Client؛ C: File Files (x86) Origin OriginClientService.exe [2403120 2019-11-01] (Electronic Arts، Inc. -> Electronic Arts)
R2 Origin Web Helper Service؛ C: File Files (x86) Origin OriginWebHelperService.exe [3282736 2019-11-01] (Electronic Arts، Inc. -> Electronic Arts)
S3 OVRLibraryService؛ C: File Files Oculus پشتیبانی oculus-librarian OVRLibarusService.exe [145336 2020-04-02] (Oculus VR، LLC -> Facebook Technologies، LLC)
R2 OVRService؛ C: File Files Oculus پشتیبانی oculus-runtime OVRServiceLauncher.exe [512440 2020-04-02] (Oculus VR، LLC -> Facebook Technologies، LLC)
S3 Rockstar Service؛ D: File Files Rockstar Games Launcher RockstarService.exe [474256 2019-12-17] (Rockstar Games، Inc. -> Games Rockstar)
S3 Sense؛ C: File Files Windows Defender Advanced Threat Protection MsSense.exe [5796168 2019-12-15] (انتشار دهنده ویندوز مایکروسافت -> Microsoft Corporation)
S3 VSStandardCollectorService150؛ C: File Files (x86) Microsoft Visual Studio Shared Common DiagnosticsHub.Collection.Service StandardCollector.Service.exe [147392 2019-05-01] (شركت Microsoft – – Microsoft Corporation)
S3 WdNisSvc؛ C: File Files Windows Defender NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend؛ C: File Files Windows Defender MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem؛ "C: Program Files NVIDIA Corporation Display.NvContainer NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C: ProgramData NVIDIA NVDisplay.ContainerLocalSystem.log" -l 3 -d "C: پرونده های برنامه NVIDIA Corporation Display.NvContainer plugins LocalSystem "-r -p 30000
S2 NvTelemetryContainer؛ "C: Program Files NVIDIA Corporation NvTelemetry NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C: ProgramData NVIDIA NvTeletetryContainer.log" -l 3 -d "C: Program Files NVIDIA افزونه ها "-r

====================== درایورها (لیست سفید) =================== =

(اگر مدرکی در لیست ثابت قرار گیرد ، از رجیستری حذف می شود. پرونده منتقل نمی شود مگر اینکه به طور جداگانه ذکر شود.)

R0 aswArDisk؛ C:WINDOWSSystem32driversaswArDisk.sys [37856 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:WINDOWSSystem32driversaswArPot.sys [206120 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:WINDOWSSystem32driversaswbidsdriver.sys [234776 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:WINDOWSSystem32driversaswbidsh.sys [178968 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:WINDOWSSystem32driversaswbuniv.sys [60696 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:WINDOWSSystem32driversaswElam.sys [16304 2020-02-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:WINDOWSSystem32driversaswKbd.sys [42984 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:WINDOWSSystem32driversaswMonFlt.sys [175920 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:WINDOWSSystem32driversaswNetHub.sys [492144 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:WINDOWSSystem32driversaswRdr2.sys [109480 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:WINDOWSSystem32driversaswRvrt.sys [85056 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:WINDOWSSystem32driversaswSnx.sys [851808 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:WINDOWSSystem32driversaswSP.sys [459408 2020-04-16] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:WINDOWSSystem32driversaswStm.sys [235696 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:WINDOWSSystem32driversaswVmm.sys [317280 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
R3 CorsairVBusDriver; C:WINDOWSSystem32driversCorsairVBusDriver.sys [46944 2018-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:WINDOWSSystem32driversCorsairVHidDriver.sys [23392 2018-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz148; C:WINDOWStempcpuz148cpuz148_x64.sys [44648 2020-04-16] (CPUID S.A.R.L.U. -> CPUID)
R3 gameflt; C:WINDOWSSystem32DriverStoreFileRepositorygameflt.inf_amd64_158653e0522d616egameflt.sys [71000 2020-04-16] (Microsoft Windows -> Microsoft Corporation)
R3 kvnet; C:WINDOWSSystem32driverskvnet.sys [48552 2018-03-22] (GFI Software Development Limited -> Kerio Technologies Inc.)
R2 MBAMChameleon; C:WINDOWSSystem32DriversMbamChameleon.sys [214496 2020-02-29] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:WINDOWSSystem32DRIVERSMbamElam.sys [20936 2020-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:WINDOWSSystem32Driversmbamswissarmy.sys [248968 2020-04-16] (Malwarebytes Inc -> Malwarebytes)
R3 nvlddmkm; C:WINDOWSSystem32DriverStoreFileRepositorynv_dispi.inf_amd64_db678424d2641c3dnvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:Program FilesNVIDIA CorporationNvStreamSrvNvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:WINDOWSsystem32driversnvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:WINDOWSSystem32driversnvvhci.sys [75600 2019-08-22] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OCULUSUDSVR; C:WINDOWSSystem32driversOCULUSUD.sys [3867552 2019-12-17] (Microsoft Windows Hardware Compatibility Publisher -> Oculus VR, LLC.)
R3 oculusvad_oculusvad; C:WINDOWSSystem32driversoculusvad.sys [71184 2020-03-08] (Microsoft Windows Hardware Compatibility Publisher -> Windows ® Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:WINDOWSSystem32driversOculus_ViGEmBus.sys [32856 2019-12-17] (Oculus VR, LLC -> Facebook Inc.)
R3 rt640x64; C:WINDOWSSystem32driversrt640x64.sys [1010648 2017-10-20] (Realtek Semiconductor Corp. -> Realtek )
S3 WdBoot; C:WINDOWSsystem32driversWdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:WINDOWSsystem32driversWdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:WINDOWSSystem32DriversWdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 Xvdd; C:WINDOWSSystem32DriverStoreFileRepositoryxvdd.inf_amd64_7c3edb5ea11185bbxvdd.sys [497000 2020-04-16] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-16 23:19 – 2020-04-16 23:20 – 000000000 ____D C:FRST
2020-04-16 23:18 – 2020-04-16 23:18 – 000000534 _____ C:UsersDorotaDesktopNew Text Document.txt
2020-04-16 23:01 – 2020-04-16 23:01 – 000003420 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineUA
2020-04-16 23:01 – 2020-04-16 23:01 – 000003296 _____ C:WINDOWSsystem32TasksGoogleUpdateTaskMachineCore
2020-04-16 23:01 – 2020-04-16 23:01 – 000002377 _____ C:ProgramData MicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2020-04-16 23:01 – 2020-04-16 23:01 – 000002336 _____ C:UsersPublicDesktopGoogle Chrome.lnk
2020-04-16 23:01 – 2020-04-16 23:01 – 000002336 _____ C:ProgramDataDesktopGoogle Chrome.lnk
2020-04-16 22:32 – 2020-04-16 22:32 – 000248968 _____ (Malwarebytes) C:WINDOWSsystem32Driversmbamswissarmy.sys
2020-04-16 22:32 – 2020-04-16 22:32 – 000000000 ___HD C:OneDriveTemp
2020-04-16 22:32 – 2020-04-16 22:32 – 000000000 ____D C:Program Files (x86)Microsoft GameInput
2020-04-16 22:32 – 2020-04-16 08:06 – 000090624 _____ (Microsoft Corporation) C:WINDOWSsystem32gamingtcuihelpers.dll
2020-04-16 21:32 – 2020-04-16 21:32 – 000000000 ____D C:UsersDorotaDesktoptriko
2020-04-16 19:15 – 2020-04-16 19:15 – 000078085 _____ C:UsersDorotaDownloadssansserif_17.zip
2020-04-16 19:11 – 2020-04-16 19:11 – 000015795 _____ C:UsersDorotaDownloadsswcrawlbo dy.zip
2020-04-15 11:57 – 2020-04-15 11:57 – 000492144 _____ (AVAST Software) C:WINDOWSsystem32DriversaswNetHub.sys
2020-04-15 11:57 – 2020-04-15 11:57 – 000337048 _____ (AVAST Software) C:WINDOWSsystem32aswBoot.exe
2020-04-15 11:57 – 2020-04-15 11:57 – 000235696 _____ (AVAST Software) C:WINDOWSsystem32DriversaswStm.sys
2020-04-15 11:57 – 2020-04-15 11:57 – 000175920 _____ (AVAST Software) C:WINDOWSsystem32DriversaswMonFlt.sys
2020-04-14 18:51 – 2020-04-14 18:51 – 000000215 _____ C:UsersDorotaDesktoppopis pozice.txt
2020-04-14 18:13 – 2020-04-16 21:32 – 000000407 _____ C:UsersDorotaDesktopMatej vety.txt
2020-04-14 16:22 – 2020-04-14 16:22 – 000365994 _____ C:UsersDorotaDownloadscestak.pdf
2020-04-14 16:22 – 2020-04-14 16:22 – 000365994 _____ C:UsersDorotaDownloadscestak (1).pdf
2020-04-12 10:43 – 2020-04-16 22:36 – 000000000 ____D C:UsersDorotaAppDataLocalLowuTorrent
2020-04-11 10:41 – 2020-04-11 10:41 – 000000000 ____D C:WINDOWSPanther
2020-04-05 20:35 – 2020-04-05 20:35 – 000000000 ____D C:Temp
2020-04-04 21:02 – 2020-04-04 21:02 – 000000000 ____D C:UsersPublicDocumentsSteam
2020-04-04 21:02 – 2020-04-04 21:02 – 000000000 ____D C:ProgramDataDocumentsSteam
2020-04-04 20:56 – 2020-04-04 20:56 – 000001085 _____ C:UsersDorotaDesktopHalf Life Alyx.lnk
2020-04-04 20:56 – 2020-04-04 20:56 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsHalf Life Alyx
2020-04-01 22:09 – 2020-04-01 22:09 – 000066454 _____ C:WINDOWSsystem32bootdelete.lst
2020-04-01 22:09 – 2020-04-01 22:09 – 000012872 _____ (SurfRight B.V.) C:WINDOWSsystem32bootdelete.exe
2020-04-01 21:47 – 2020-04-01 22:11 – 000000000 ____D C:ProgramDataHitmanPro
2020-04-01 21:47 – 2020-04-01 21:47 – 000000000 ____D C:Program FilesHitmanPro
2020-03-31 12:47 – 2020- 03-31 12:47 – 000000000 ____D C:UsersDorotaAppDataRoamingdvdcss
2020-03-30 07:52 – 2020-03-30 07:52 – 000000000 ____D C:ProgramDatadbg
2020-03-30 01:15 – 2020-03-30 01:15 – 000000646 _____ C:UsersDorotaDesktoptvarohovy dort.txt
2020-03-30 01:07 – 2020-03-30 01:07 – 000000991 _____ C:UsersDorotaDesktoptvarohova babovka.txt
2020-03-29 18:36 – 2020-04-16 16:24 – 000002948 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-29 18:36 – 2020-04-16 16:24 – 000002948 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-29 18:36 – 2020-04-16 16:24 – 000002948 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-29 18:36 – 2020-04-16 16:24 – 000002948 _____ C:WINDOWSsystem32TasksNvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-29 11:48 – 2020-03-29 11:53 – 000000000 ____D C:UsersDorotaDesktopprodej nove
2020-03-28 12:50 – 2020-04-15 22:26 – 008388608 _____ C:UsersDorotaWTFDatabase_log.ldf
2020-03-28 12:50 – 2020-04-15 22:26 – 008388608 _____ C:UsersDorotaWTFDatabase.mdf
2020-03-28 12:47 – 2020-04-11 01:00 – 000000000 ____D C:UsersDorotaDocumentsSQL Server Management Studio
2020-03-28 12:47 – 2020-03-28 16:02 – 000000000 ____D C:UsersDorotaDocumentsVisual Studio 2017
2020-03-28 12:46 – 2020-03-28 12:47 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMicrosoft SQL Server Tools 18
2020-03-28 12:45 – 2020-03-28 12:46 – 000000000 ____D C:Program Files (x86)Microsoft SQL Server Management Studio 18
2020-03-28 12:45 – 2020-03-28 12:45 – 000000000 ____D C:Program FilesMicrosoft Analysis Services
2020-03-28 12:45 – 2020-03-28 12:45 – 000000000 ____D C:Program Files (x86)Microsoft Help Viewer
2020-03-28 12:45 – 2 020-03-28 12:45 – 000000000 ____D C:Program Files (x86)Microsoft Analysis Services
2020-03-28 12:37 – 2020-03-28 12:37 – 000000000 ____D C:ProgramDataVsTelemetry
2020-03-24 12:29 – 2020-03-24 12:29 – 000000000 ____D C:EditorUPD
2020-03-24 12:29 – 2020-03-24 12:29 – 000000000 ____D C:EditorTest
2020-03-24 12:27 – 2020-03-24 12:27 – 000000000 ____D C:UsersDorotaDocumentsTest Client Projects
2020-03-24 12:25 – 2020-03-24 12:25 – 000000000 ____D C:UPD
2020-03-24 10:39 – 2020-03-24 10:39 – 000000142 _____ C:UsersDorota.bash_history
2020-03-24 10:11 – 2020-03-24 10:11 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsGit
2020-03-24 10:11 – 2020-03-24 10:11 – 000000000 ____D C:Program FilesGit
2020-03-24 08:59 – 2020-04-16 16:24 – 000002700 _____ C:WINDOWSsystem32TasksWinZip Update Notifier 2
2020-03-24 08:59 – 2020-04-16 16:24 – 000002698 _____ C:WINDOWSsystem3 2TasksWinZip Update Notifier 3
2020-03-24 08:59 – 2020-04-16 16:24 – 000002698 _____ C:WINDOWSsystem32TasksWinZip Update Notifier 1
2020-03-24 08:59 – 2020-03-24 09:00 – 000000000 ____D C:UsersDorotaAppDataLocalWinZip
2020-03-24 08:59 – 2020-03-24 08:59 – 000002087 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsWinZip.lnk
2020-03-24 08:59 – 2020-03-24 08:59 – 000001987 _____ C:UsersPublicDesktopWinZip.lnk
2020-03-24 08:59 – 2020-03-24 08:59 – 000001987 _____ C:ProgramDataDesktopWinZip.lnk
2020-03-24 08:59 – 2020-03-24 08:59 – 000000000 ____D C:ProgramDataWinZip
2020-03-24 08:59 – 2020-03-24 08:59 – 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsWinZip
2020-03-24 08:59 – 2020-03-24 08:59 – 000000000 ____D C:Program FilesWinZip
2020-03-24 08:58 – 2020-03-24 08:58 – 000000000 ____D C:ProgramDataUniqueId
2020-03-23 17:28 – 2020-03-23 17:28 – 00 0000000 ____D C:UsersDorotaAppDataRoamingMicrosoft FxCop
2020-03-23 15:00 – 2020-03-23 15:41 – 000000000 ____D C:UsersDorotaDesktopEditorUPD

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-16 23:17 – 2019-03-19 06:52 – 000000000 ____D C:ProgramDataregid.1991-06.com.microsoft
2020-04-16 23:13 – 2018-07-29 17:13 – 000000000 ____D C:UsersDorotaAppDataLocalCrashDumps
2020-04-16 23:08 – 2018-02-21 04:50 – 000000000 ____D C:UsersDorotaAppDataLocalPackages
2020-04-16 23:07 – 2019-11-01 21:38 – 000000000 ____D C:UsersDorotaAppDataRoamingDiscord
2020-04-16 23:01 – 2018-02-20 22:23 – 000000000 ____D C:Program Files (x86)Google
2020-04-16 22:47 – 2019-03-19 06:52 – 000000000 ____D C:WINDOWSAppReadiness
2020-04-16 22:47 – 2018-02-20 22:47 – 000000000 ____D C:ProgramDataAVAST Software[1 9459002]2020-04-16 22:41 – 2020-01-20 20:11 – 000847580 _____ C:WINDOWSsystem32perfh015.dat
2020-04-16 22:41 – 2020-01-20 20:11 – 000188500 _____ C:WINDOWSsystem32perfc015.dat
2020-04-16 22:41 – 2019-12-15 17:41 – 002925306 _____ C:WINDOWSsystem32PerfStringBackup.INI
2020-04-16 22:41 – 2019-03-19 13:57 – 000780322 _____ C:WINDOWSsystem32perfh005.dat
2020-04-16 22:41 – 2019-03-19 13:57 – 000178230 _____ C:WINDOWSsystem32perfc005.dat
2020-04-16 22:41 – 2019-03-19 06:50 – 000000000 ____D C:WINDOWSINF
2020-04-16 22:36 – 2019-02-07 17:43 – 000000000 ____D C:UsersDorotaAppDataRoaminguTorrent
2020-04-16 22:36 – 2019-01-19 17:26 – 000000000 ____D C:Program Files (x86)Steam
2020-04-16 22:34 – 2019-01-19 16:34 – 000000000 ____D C:ProgramDataNVIDIA
2020-04-16 22:33 – 2019-06-01 08:35 – 000000000 ____D C:UsersDorotaAppDataLocalBitTorrentHelper
2020-04-16 22:32 – 2019-12-17 18:38 – 000000000 ____D C:UsersDorotaAppDataLocalOculus
2020-04-16 22:32 – 2019-12-15 17:38 – 000000006 ____H C:WINDOWSTasksSA.DAT
2020-04-16 22:32 – 2019-03-19 06:52 – 000000000 ___HD C:Program FilesWindowsApps
2020-04-16 22:32 – 2018-02-21 04:52 – 000000000 ___RD C:UsersDorotaOneDrive
2020-04-16 22:16 – 2019-03-19 06:37 – 000524288 _____ C:WINDOWSsystem32configBBI
2020-04-16 22:15 – 2019-12-15 17:32 – 000000000 ____D C:WINDOWSsystem32SleepStudy
2020-04-16 21:34 – 2020-02-02 15:17 – 000000000 ____D C:UsersDorotaAppDataLocal.IdentityService
2020-04-16 19:10 – 2019-12-15 17:38 – 000003856 _____ C:WINDOWSsystem32TasksAvast Secure Browser Heartbeat Task (Hourly)
2020-04-16 19:10 – 2019-12-15 17:38 – 000003272 _____ C:WINDOWSsystem32TasksAvast Secure Browser Heartbeat Task (Logon)
2020-04-16 19:10 – 2018-07-29 17:27 – 000002498 _____ C:ProgramDataMicrosoftWindowsStart MenuProgr amsAvast Secure Browser.lnk
2020-04-16 19:10 – 2018-07-29 17:27 – 000002463 _____ C:UsersPublicDesktopAvast Secure Browser.lnk
2020-04-16 19:10 – 2018-07-29 17:27 – 000002463 _____ C:ProgramDataDesktopAvast Secure Browser.lnk
2020-04-16 16:52 – 2018-03-26 22:24 – 000002248 ____H C:UsersDorotaDocumentsDefault.rdp
2020-04-16 16:24 – 2019-12-15 17:38 – 000003788 _____ C:WINDOWSsystem32TasksAdobe Flash Player PPAPI Notifier
2020-04-16 16:24 – 2019-12-15 17:38 – 000003398 _____ C:WINDOWSsystem32TasksNvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-16 16:24 – 2019-12-15 17:38 – 000003196 _____ C:WINDOWSsystem32TasksNvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-16 16:24 – 2019-12-15 17:38 – 000003152 _____ C:WINDOWSsystem32TasksNVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-16 16:24 – 2019-12-15 17:38 – 0000 02984 _____ C:WINDOWSsystem32TasksNvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-16 16:24 – 2019-12-15 17:38 – 000002914 _____ C:WINDOWSsystem32TasksNvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-16 16:24 – 2019-12-15 17:38 – 000002862 _____ C:WINDOWSsystem32TasksOneDrive Standalone Update Task-S-1-5-21-2096388356-1422183332-1631676226-1001
2020-04-16 16:24 – 2019-12-15 17:38 – 000002776 _____ C:WINDOWSsystem32TasksAdobeAAMUpdater-1.0-DESKTOP-JOAKH6R-Dorota
2020-04-16 16:24 – 2019-12-15 17:38 – 000002744 _____ C:WINDOWSsystem32TasksNvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-16 16:24 – 2019-12-15 17:38 – 000002730 _____ C:WINDOWSsystem32TasksAdobeGCInvoker-1.0-DESKTOP-JOAKH6R-Dorota
2020-04-16 16:24 – 2019-12-15 17:38 – 000000000 ____D C:WINDOWSsystem32TasksAvast Software
2020-04-16 15:26 – 2018-12-14 23:44 – 000000000 ___RD C:Users DorotaDownloadsMicrosoft.SkypeApp_kzf8qxf38zg5c!App
2020-04-16 11:57 – 2018-02-20 22:49 – 000459408 _____ (AVAST Software) C:WINDOWSsystem32DriversaswSP.sys
2020-04-16 08:10 – 2018-03-05 15:49 – 000000000 ____D C:UsersDorotaAppDataLocalAdobe
2020-04-16 08:06 – 2019-12-15 17:48 – 001449920 _____ (Microsoft Corporation) C:WINDOWSsystem32xgameruntime.dll
2020-04-16 08:06 – 2019-12-15 17:48 – 000153528 _____ (Microsoft Corporation) C:WINDOWSsystem32gameconfighelper.dll
2020-04-16 08:06 – 2019-12-15 17:48 – 000118200 _____ (Microsoft Corporation) C:WINDOWSsystem32gamingservicesproxy.dll
2020-04-16 08:06 – 2019-12-15 17:48 – 000033720 _____ (Microsoft Corporation) C:WINDOWSsystem32gamemodcontrol.exe
2020-04-15 20:45 – 2019-12-15 17:33 – 000002370 _____ C:UsersDorotaAppDataRoamingMicrosoftWindowsStart MenuProgramsOneDrive.lnk
2020-04-15 14:58 – 2018-03-05 16:25 – 000000000 ____D C:UsersD orotaAppDataRoamingvlc
2020-04-15 11:57 – 2019-12-15 17:38 – 000003990 _____ C:WINDOWSsystem32TasksAvast Emergency Update
2020-04-15 11:57 – 2019-03-19 06:52 – 000000000 ___HD C:WINDOWSELAMBKUP
2020-04-15 11:57 – 2019-01-14 21:45 – 000234776 _____ (AVAST Software) C:WINDOWSsystem32Driversaswbidsdriver.sys
2020-04-15 11:57 – 2019-01-05 13:03 – 000178968 _____ (AVAST Software) C:WINDOWSsystem32Driversaswbidsh.sys
2020-04-15 11:57 – 2019-01-05 13:03 – 000060696 _____ (AVAST Software) C:WINDOWSsystem32Driversaswbuniv.sys
2020-04-15 11:57 – 2019-01-05 13:03 – 000037856 _____ (AVAST Software) C:WINDOWSsystem32DriversaswArDisk.sys
2020-04-15 11:57 – 2018-10-11 05:43 – 000042984 _____ (AVAST Software) C:WINDOWSsystem32DriversaswKbd.sys
2020-04-15 11:57 – 2018-02-20 22:49 – 000851808 _____ (AVAST Software) C:WINDOWSsystem32DriversaswSnx.sys
2020-04-15 11:57 – 2018-02-20 22:49 – 0003 17280 _____ (AVAST Software) C:WINDOWSsystem32DriversaswVmm.sys
2020-04-15 11:57 – 2018-02-20 22:49 – 000206120 _____ (AVAST Software) C:WINDOWSsystem32DriversaswArPot.sys
2020-04-15 11:57 – 2018-02-20 22:49 – 000109480 _____ (AVAST Software) C:WINDOWSsystem32DriversaswRdr2.sys
2020-04-15 11:57 – 2018-02-20 22:49 – 000085056 _____ (AVAST Software) C:WINDOWSsystem32DriversaswRvrt.sys
2020-04-14 20:50 – 2019-03-19 06:37 – 000000000 ____D C:WINDOWSCbsTemp
2020-04-12 19:41 – 2018-08-09 18:09 – 000000000 ____D C:UsersDorotaAppDataLocalD3DSCache
2020-04-12 10:54 – 2019-06-09 16:50 – 000012869 _____ C:UsersDorotaDesktopPokrok.xlsx
2020-04-11 10:43 – 2019-03-19 06:52 – 000000000 ____D C:Program FilesCommon Filesmicrosoft shared
2020-04-11 10:42 – 2019-06-09 16:42 – 000000000 ____D C:Program FilesMicrosoft Office
2020-04-10 10:35 – 2019-03-19 06:52 – 000000000 ____D C:WINDOWSLiveKe rnelReports
2020-04-07 06:55 – 2019-12-15 17:27 – 000169408 _____ (Microsoft Corporation) C:WINDOWSsystem32GameInput.dll
2020-04-07 04:55 – 2019-12-15 17:27 – 000138168 _____ (Microsoft Corporation) C:WINDOWSSysWOW64GameInput.dll
2020-04-03 11:25 – 2018-02-22 22:24 – 000000000 ____D C:UsersDorotaAppDataLocalPlaceholderTileLogoFolder
2020-04-03 11:23 – 2018-02-20 23:01 – 000000000 ____D C:UsersDorotaAppDataLocalElevatedDiagnostics
2020-04-03 00:04 – 2019-12-17 18:32 – 000000000 ____D C:Program FilesOculus
2020-03-31 18:39 – 2019-12-15 17:33 – 000000000 ____D C:UsersDorota
2020-03-29 18:36 – 2019-01-19 16:33 – 000000000 ____D C:ProgramDataNVIDIA Corporation
2020-03-29 18:36 – 2019-01-19 16:33 – 000000000 ____D C:Program FilesNVIDIA Corporation
2020-03-29 18:36 – 2019-01-19 16:33 – 000000000 ____D C:Program Files (x86)NVIDIA Corporation
2020-03-28 14:24 – 2020-01-02 00:07 – 000000000 ____D C:UsersDorota.dotnet
2020-03-28 14:23 – 2020-02-02 15:57 – 000000000 ____D C:Program Filesdotnet
2020-03-28 14:23 – 2019-01-19 16:39 – 000000000 ____D C:ProgramDataPackage Cache
2020-03-28 13:20 – 2020-02-02 15:06 – 000000000 ____D C:UsersDorotaAppDataRoamingVisual Studio Setup
2020-03-28 13:19 – 2020-02-02 15:06 – 000001359 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsVisual Studio Installer.lnk
2020-03-28 13:18 – 2020-02-02 15:06 – 000000000 ____D C:Program Files (x86)Microsoft Visual Studio
2020-03-28 12:47 – 2020-02-02 15:09 – 000000000 ____D C:Program Files (x86)Microsoft SQL Server
2020-03-28 12:45 – 2020-02-02 16:01 – 000000000 ____D C:WINDOWSSysWOW641033
2020-03-28 12:45 – 2020-02-02 16:01 – 000000000 ____D C:WINDOWSsystem321033
2020-03-28 12:41 – 2019-12-15 17:48 – 000052360 _____ (Microsoft Corporation) C:WINDOWSsystem32gameplatformservices.d ll
2020-03-28 12:38 – 2020-02-02 15:09 – 000000000 ____D C:Program FilesMicrosoft SQL Server
2020-03-24 14:33 – 2019-03-19 06:52 – 000000000 ____D C:WINDOWSsystem32FxsTmp

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-04-2020
Ran by Dorota (16-04-2020 23:21:09)
Running from C:UsersDorotaAppDataLocalPackagesMicrosoft.MicrosoftEdge_8wekyb3d8bbweTempStateDownloads
Windows 10 Pro Version 1909 18363.535 (X64) (2019-12-15 15:38:20)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2096388356-1422183332-1631676226-500 – Administrator – Disabled)
DefaultAccount (S-1-5-21-2096388356-1422183332-1631676226-503 – Limited – Disabled)
Dorota (S-1-5-21-2096388356-1422183332-1631676226-1001 – Administrator – Enabled) => C:UsersDorota
Guest (S-1-5-21-2096388356-1422183332-1631676226-501 – Limited – Disabled)
WDAGUtilityAccount (S-1-5-21-2096388356-1422183332-1631676226-504 – Limited – Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled – Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled – Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled – Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled – Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

====== ============== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKUS-1-5-21-2096388356-1422183332-1631676226-1001…uTorrent) (Version: 3.5.5.45628 – BitTorrent Inc.)
Active Directory Authentication Library for SQL Server (HKLM…{6BF11ECE-3CE8-4FBA-991A-1F55AA6BE5BF}) (Version: 15.0.1300.359 – Microsoft Corporation) Hidden
adobe (HKLM…{1AB383B9-C9F6-4E37-8F41-5AAEF11B8A36}) (Version: 1.0.0000 – Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32…Adobe Creative Cloud) (Version: 4.3.0.256 – Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32…Adobe Flash Player PPAPI) (Version: 32.0.0.270 – Adobe)
Adobe Lightroom Classic CC (HKLM-x32…LTRM_7_1) (Version: 7.1 – Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32…PHSP_19_1) (Version: 19.1 – Adobe Systems Incorporated)
Adobe Photoshop Lightroom Classic CC 2018 [CracksNow] (HKLM…{D21A32AE-D546-4F0B-9DFB-9BB B6A1CFD53}) (Version: 1.0.0000 – Adobe Systems Incorporated) Hidden
Age of Mythology: Extended Edition (HKLM-x32…QWdlb2ZNeXRob2xvZ3lFeHRlbmRlZEVkaXRpb24=_is1) (Version: 1 – )
Application Verifier x64 External Package (HKLM…{10CA1677-8F02-3131-F25C-780BAB52E468}) (Version: 10.1.18362.1 – Microsoft) Hidden
Avast Free Antivirus (HKLM-x32…Avast Antivirus) (Version: 20.2.2401 – Avast Software)
Avast Secure Browser (HKLM-x32…Avast Secure Browser) (Version: 80.1.3901.163 – AVAST Software)
Avast Update Helper (HKLM-x32…{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 – AVAST Software) Hidden
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32…{5FD1DF50-FBB1-4888-8F8F-4ECDC78909C4}) (Version: 4.8.03928 – Microsoft Corporation) Hidden
CORSAIR iCUE Software (HKLM-x32…{9F6BAED1-1FDA-4AFD-A766-71767A2E784D}) (Version: 3.12.118 – Corsair)
DiagnosticsHub_CollectionService (HKLM…{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 – Microsoft Corporation) Hidden
Discord (HKUS-1-5-21-2096388356-1422183332-1631676226-1001…Discord) (Version: 0.0.306 – Discord Inc.)
DisplayDriverAnalyzer (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.71 – NVIDIA Corporation) Hidden
Entity Framework 6.2.0 Tools for Visual Studio 2019 (HKLM-x32…{7C2070BF-8E07-4B5F-A182-FADB0B95AB39}) (Version: 6.2.0.0 – Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32…{19BC09B5-F319-4A61-A878-475E7F7054EA}) (Version: 1.1.195.0 – Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM…{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
Epubor KCR (HKLM-x32…Epubor KCR) (Version: 1.0.1.164 – Epubor Inc.)
GameInput Redistributable (HKLM-x32…{5CAEA37E-8C31-F1D0-9BD8-91B1EFAEF885}) (Version: 10.1.19041.1124 – M icrosoft Corporation)
Git version 2.26.0 (HKLM…Git_is1) (Version: 2.26.0 – The Git Development Community)
Google Chrome (HKLM-x32…Google Chrome) (Version: 81.0.4044.113 – Google LLC)
Google Update Helper (HKLM-x32…{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 – Google LLC) Hidden
Half Life Alyx (HKLM-x32…Half Life Alyx_is1) (Version: – )
Hitman 2 (HKLM-x32…{F7E0BCEB-1F73-468C-BC5B-CFD39EC31149}_is1) (Version: – IO Interactive)
HitmanPro 3.8 (HKLM…HitmanPro38) (Version: 3.8.18.312 – SurfRight B.V.)
icecap_collection_neutral (HKLM-x32…{985FBEB2-DBE9-407D-B1E9-B07E0E4D0CBC}) (Version: 16.4.29430 – Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM…{1C86330F-D72E-4268-B461-758854BC4A52}) (Version: 16.4.29430 – Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32…{9E7C1C9B-6E2E-4057-857D-62F7F5ABE36B}) (Version: 16.4.29430 – Microsoft Corpo ration) Hidden
icecap_collectionresourcesx64 (HKLM-x32…{F5C67FC5-BF18-4304-9268-A971876B245A}) (Version: 16.4.29411 – Microsoft Corporation) Hidden
IIS 10.0 Express (HKLM…{643F2A3F-960C-4914-BD67-9490B4484108}) (Version: 10.0.03203 – Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM…{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: – ) Hidden
IIS Express Application Compatibility Database for x86 (HKLM…{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: – ) Hidden
Integration Services (HKLM-x32…{D2B37BBC-83A5-4C27-A804-4DC51AFA9E0D}) (Version: 15.0.1900.63 – Microsoft Corporation) Hidden
Intel® Processor Graphics (HKLM-x32…{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4839 – Intel Corporation)
IntelliTraceProfilerProxy (HKLM-x32…{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 – Microsoft Corporation) Hidden
JetBrains R ider 2019.3.1 (HKLM-x32…JetBrains Rider 2019.3.1) (Version: 193.5662.14 – JetBrains s.r.o.)
Kerio Control VPN Client (HKLM…{66574807-B70C-497F-AB9B-76E11CC24C16}) (Version: 9.2.2532 – Kerio Technologies Inc.)
Kits Configuration Installer (HKLM-x32…{63AAA877-5536-9481-2385-28A082100D78}) (Version: 10.1.18362.1 – Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32…{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 – Epic Games, Inc.) Hidden
Malwarebytes version 4.0.4.49 (HKLM…{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 – Malwarebytes)
Mi PC Suite (HKUS-1-5-21-2096388356-1422183332-1631676226-1001…MiPhoneManager) (Version: – Xiaomi Inc.)
Microsoft .NET Core Runtime – 3.1.2 (x64) (HKLM-x32…{6f468edf-297f-4827-9fb9-460fc304cbb9}) (Version: 3.1.2.28517 – Microsoft Corporation)
Microsoft .NET Core SDK 2.2.100 (x64) (HKLM-x32…{0374c124-4f63-47a8-888e-8c7e7f394d48}) (Ve rsion: 2.2.100 – Microsoft Corporation)
Microsoft .NET Core SDK 3.1.101 (x64) from Visual Studio (HKLM…{9A50B769-0AE9-4F79-94F2-C4A1FDDC0137}) (Version: 3.1.101.014848 – Microsoft Corporation)
Microsoft .NET Core SDK 3.1.102 (x64) (HKLM-x32…{6227d590-0a6e-4051-b67a-2d9a250a8fe6}) (Version: 3.1.102.14873 – Microsoft Corporation)
Microsoft Azure Authoring Tools – v2.9.6 (HKLM…{EDADFA19-7F96-4075-A4AB-2209910626C5}) (Version: 2.9.8899.26 – Microsoft Corporation)
Microsoft Azure Compute Emulator – v2.9.6 (HKLM…Microsoft Azure Compute Emulator – v2.9.6) (Version: 2.9.8899.26 – Microsoft Corporation)
Microsoft Azure Libraries for .NET – v2.9 (HKLM…{C5C91AA6-3E83-430E-8B7A-6B790083F28D}) (Version: 3.0.0127.060 – Microsoft Corporation)
Microsoft Azure Storage Emulator – v5.10 (HKLM-x32…Microsoft Azure Storage Emulator – v5.10) (Version: 5.10.19227.2113 – Microsoft Corporation)
Microsoft Help Viewer 2.3 (HK LM-x32…Microsoft Help Viewer 2.3) (Version: 2.3.28107 – Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM…{72AFAF21-33FB-45A5-9468-A9EC07427F82}) (Version: 17.4.1.1 – Microsoft Corporation)
Microsoft Office Professional Plus 2019 – en-us (HKLM…ProPlus2019Retail – en-us) (Version: 16.0.12624.20382 – Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM…{9AA0AFFA-EDB6-4B66-9FD7-BBC828D88B47}) (Version: 18.2.3.0 – Microsoft Corporation)
Microsoft OneDrive (HKUS-1-5-21-2096388356-1422183332-1631676226-1001…OneDriveSetup.exe) (Version: 19.232.1124.0012 – Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM…{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 – Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB (HKLM…{9097BF1A-13A0-4A4A-A1F8-473E2A669863}) (Version: 13.1.4001.0 – Microsoft Corporation)
Microsoft SQL Server Management Stud io – 18.4 (HKLM-x32…{7871da56-98b6-4ef8-b4d4-b7c310e14146}) (Version: 15.0.18206.0 – Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM…{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 – Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32…{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 – Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32…{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 – Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable – 10.0.40219 (HKLM…{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable – 10.0.40219 (HKLM-x32…{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 – Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) – 11.0.61030 (HKLM-x32 …{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) – 12.0.30501 (HKLM-x32…{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) – 12.0.30501 (HKLM-x32…{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) – 14.22.27821 (HKLM-x32…{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 – Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) – 14.22.27821 (HKLM-x32…{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 – Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM…{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.5.2059.317 – Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 (HKL M-x32…{f895a2f1-ae3f-4212-8af1-7fa1f8c212ea}) (Version: 15.0.27520 – Microsoft Corporation)
Microsoft Web Deploy 4.0 (HKLM…{BBCDB523-F5B7-4E53-A911-C85191E3BDF0}) (Version: 10.0.2606 – Microsoft Corporation)
MSI Development Tools (HKLM-x32…{DB4DB790-64DD-1902-4BF2-833B3B6DBCA1}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
NKRemote (HKLM-x32…{18F7C517-4870-4b6a-93E0-09CB4AC4FFB7}) (Version: v3.2 – Breeze Systems Ltd)
NVAPI Monitor plugin for NvContainer (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 – NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 – NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 – NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.18.0907 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 – NVIDIA Corporation)
Oculus (HKLM…Oculus) (Version: <3 – Facebook Technologies, LLC)
Office 16 Click-to-Run Extensibility Component (HKLM…{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20320 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM…{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20320 – Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM…{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12624.20320 – Microsoft Corporation) Hidden
Origin (HKLM-x32…Origin) (Version: 10.5.52.32372 – Electronic Arts, Inc.)
Ovládací panel NVIDIA 432.00 (HKLM…{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 – NVIDIA Corporation) Hidden
Prison Architect (HKLM-x32…1441974651_is1) (Version: multiplayer -3a – GOG.com)
Realtek Ethernet Controller Driver (HKLM-x32…{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 – Realtek)
Rockstar Games Launcher (HKLM-x32…Rockstar Games Launcher) (Version: 1.0.17.199 – Rockstar Games)
Rockstar Games Social Club (HKLM-x32…Rockstar Games Social Club) (Version: 2.0.4.3 – Rockstar Games)
SDK ARM Additions (HKLM-x32…{73681F86-CD86-4208-572F-959B45430B04}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32…{67EE3804-9642-62BA-EBF1-B1561FB4ECBE}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM…{3E532AF4-B9B1-4DE0-9511-7ACEB14C8D6D}) (Version: 15.0.18206.0 – Microsoft Corporation) Hidden
SQL Server Management Studio (HKLM…{98D7AA09-44E1-4469-AB34-BFDC9A6890DD}) (Version: 15.0.18206.0 – Microsoft Corporation) Hidden
SQL Server Management Studio for Analys is Services (HKLM…{3D53F8BD-E78B-41E1-A4B5-0AC3F1ED50EF}) (Version: 15.0.18206.0 – Microsoft Corporation) Hidden
SQL Server Management Studio for Reporting Services (HKLM…{1B1BC009-AA81-48C1-AE01-321DAD884FBB}) (Version: 15.0.18206.0 – Microsoft Corporation) Hidden
SSMS Post Install Tasks (HKLM…{872C7FD8-1063-4CA8-8CE2-B34E206602FC}) (Version: 15.0.18206.0 – Microsoft Corporation) Hidden
Steam (HKLM-x32…Steam) (Version: 2.10.91.91 – Valve Corporation)
TypeScript SDK (HKLM-x32…{4E95B929-510E-46C8-8FFC-278A90496A5C}) (Version: 3.7.4.0 – Microsoft Corporation) Hidden
Unity (HKLM-x32…Unity) (Version: 2019.2.8f1 – Unity Technologies ApS)
Universal CRT Extension SDK (HKLM-x32…{13952D7A-B7B3-F4F8-5F29-5CD18E8168B7}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32…{74CBC330-ED16-31B9-E8BE-0C6A8E67DE32}) (Version: 10.1.18362.1 – Microsoft Co rporation) Hidden
Universal CRT Redistributable (HKLM-x32…{847D4DAF-0182-265B-324F-406462E8A90D}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM…{54FE4D23-11A2-F1C4-76E9-79C8FB40A4A1}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32…{9F7B0D96-881D-8850-C303-43F3A08E6902}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32…{6F54BF87-2EE6-FA6D-431D-33A665992D49}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32…{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 – Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM…{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 – Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32…{A8059244-ADC7-4A76-9EEA-E0562F480BDE}) (Version: 14.2 4.28127 – Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32…fdfa370) (Version: 16.4.29728.190 – Microsoft Corporation)
VLC media player (HKLM-x32…VLC media player) (Version: 3.0.4 – VideoLAN)
VS Immersive Activate Helper (HKLM-x32…{78500789-0EBE-4490-BE43-F9EF8250BF42}) (Version: 16.0.98.0 – Microsoft Corporation) Hidden
VS JIT Debugger (HKLM…{4137D3AB-5B44-4AC9-83A4-5273F2E2547E}) (Version: 16.0.98.0 – Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM…{D8B26CBD-15D2-440B-BCBD-5616D74EFC7D}) (Version: 16.0.98.0 – Microsoft Corporation) Hidden
VS WCF Debugging (HKLM…{C8268C4E-2A67-4845-9F8B-E76296F802BB}) (Version: 16.0.98.0 – Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32…{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32…{BAF91847-0A64-405E-98EC-A0BA6FB4BC4E}) (Versi on: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32…{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32…{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32…{597EE310-E88F-49D9-ADD5-DB6677766E7B}) (Version: 16.4.29709 – Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32…{95E79BBC-97FD-4FEB-91B5-CC0231324812}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32…{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32…{709D609A-B91C-4C1C-890B-966470991D67}) (Version: 16.4.29709 – Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32…{6BC9BFD7-46B4-46CF-B248-DEC2B7E2028B}) (Version: 16.4.29709 – Microsoft Corporation) Hidde n
vs_FileTracker_Singleton (HKLM-x32…{692A0FB3-E6A2-4D41-AC03-4136B4312DC0}) (Version: 16.3.29209 – Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32…{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 – Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32…{472A5337-3393-436B-8656-00810D36BD67}) (Version: 16.4.29709 – Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32…{EC04CD66-C03A-470D-B0D2-4BBC87F6382D}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32…{92B3118C-3214-4BFA-89A0-5FF5EDFA2AEA}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32…{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 – Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM…VulkanRT1.0.65.1) (Version: 1.0.65.1 – LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM…VulkanRT1.0. 65.1-2) (Version: 1.0.65.1 – LunarG, Inc.) Hidden
WinAppDeploy (HKLM-x32…{8E3AE0EF-D067-700C-BDB4-10D5552155DC}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32…{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 – Microsoft Corporation)
Windows Software Development Kit – Windows 10.0.18362.1 (HKLM-x32…{126dedf0-cc0e-4b48-9ece-806b0e437195}) (Version: 10.1.18362.1 – Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM…WinRAR archiver) (Version: 5.70.0 – win.rar GmbH)
WinRT Intellisense Desktop – en-us (HKLM-x32…{E67F1F03-FB4A-3D61-8999-E6A4C4B26F34}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinRT Intellisense Desktop – Other Languages (HKLM-x32…{7EF010FF-7800-28BA-FF49-2D219EC7BA82}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinRT Intellisense IoT – en-us (HKLM-x32…{36AE12FB-4349-6EAA-B6E4-5F4E06FA8AE8}) (Version: 10.1.18362.1 – Mi crosoft Corporation) Hidden
WinRT Intellisense IoT – Other Languages (HKLM-x32…{6B03A6A4-643C-57CE-CA6F-4E19BF47497A}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinRT Intellisense Mobile – en-us (HKLM-x32…{918A448F-59E8-FBF5-B087-D3F07160C7E0}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinRT Intellisense PPI – en-us (HKLM-x32…{66483041-F590-EC46-4AF0-EE39C62FB680}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinRT Intellisense PPI – Other Languages (HKLM-x32…{9C61E6D2-C43E-6746-B519-6185558C4A24}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinRT Intellisense UAP – en-us (HKLM-x32…{6B37CC5B-78DF-5050-2215-68479716A587}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinRT Intellisense UAP – Other Languages (HKLM-x32…{250D5341-0879-4016-399C-BBCD87B80E95}) (Version: 10.1.18362.1 – Microsoft Corporation) Hidden
WinZip 24.0 (HKLM…{CD95F661-A5C4 -44F5-A6AA-ECDD91C24127}) (Version: 24.0.14033 – Corel Corporation)

Packages:
=========
Age of Empires II: Definitive Edition -> C:Program FilesWindowsAppsMicrosoft.MSPhoenix_101.101.36202.0_x64__8wekyb3d8bbwe [2020-04-13] (Microsoft Studios)
DirectX -> C:Program FilesWindowsAppsMicrosoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-12-15] (Microsoft Corporation)
DirectX -> C:Program FilesWindowsAppsMicrosoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-12-15] (Microsoft Corporation)
Facebook -> C:Program FilesWindowsAppsFacebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-10-22] (Facebook Inc)
Gaming Services -> C:Program FilesWindowsAppsMicrosoft.GamingServices_2.40.7001.0_x64__8wekyb3d8bbwe [2020-04-16] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [19659067]Microsoft Advertising SDK for XAML -> C:Program FilesWindowsAppsMicrosoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:Program FilesWindowsAppsMicrosoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Studios) [MS Ad]
MSN Weather -> C:Program FilesWindowsAppsMicrosoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Corporation) [MS Ad]
Photos Media Engine Add-on -> C:Program FilesWindowsAppsMicrosoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-01] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKUS-1-5-21-2096388356-1422183332-1631676226-1001_ClassesCLSID{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}InprocServer32 -> C:Program FilesWinZipadxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
CustomCLSID: HKUS-1-5-21-2096388356-1422183332-1631676226-1001_ClassesCLSID{e8c77137-e224-5791-b6e9-ff0305797a13}InprocServer32 -> C:Program Files (x86)AdobeAdobe Creative CloudUtilsnpAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-01-04] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-01-04] (Adobe Systems Incorporated -> )
ShellIc onOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-01-04] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-01-04] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:Program FilesWinZipwzshls64.dll [2020-02-20] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF- 8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-01-22] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:Program FilesWinZipwzshls64.dll [2020-02-20] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:WINDOWSsystem32nvshext.dll [2019-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:Program Files (x86)Common FilesAdobeCoreSyncExtensionCoreSync_x64.dll [2018-01-04] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:Program FilesAVAST SoftwareAvastashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:Program FilesMalwarebytesAnti-Malwarembshlext.dll [2020-01-22] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:Program FilesWinRARrarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:Program FilesWinZipwzshls64.dll [2020-02-20] (Corel Corporation -> WinZip Computing)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-12-03 14:29 – 2018-12-03 14:29 – 0000 15872 _____ () [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwarelibEGL.DLL
2018-12-03 14:29 – 2018-12-03 14:29 – 002786816 _____ () [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwarelibGLESv2.dll
2019-01-29 18:47 – 2019-01-29 18:47 – 000204800 _____ () [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwarequazip.dll
2019-01-29 18:42 – 2019-01-29 18:42 – 000098816 _____ () [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwarezlib.dll
2019-05-05 12:28 – 2019-05-05 12:28 – 098275328 _____ () [File not signed] C:Program Files (x86)Epic GamesLauncherEngineBinariesThirdPartyCEF3Win64libcef.dll
2019-05-05 12:28 – 2019-05-05 12:28 – 000092672 _____ () [File not signed] C:Program Files (x86)Epic GamesLauncherEngineBinariesThirdPartyCEF3Win64libEGL.dll
2019-05-05 12:28 – 2019-05-05 12:28 – 003922432 _____ () [File not signed] C:Program Files (x86)Epic GamesLauncherEngineBinariesThirdPartyC EF3Win64libGLESv2.dll
2020-02-14 23:06 – 2020-02-14 23:06 – 002888192 _____ (Newtonsoft) [File not signed] C:WINDOWSassemblyNativeImages_v4.0.30319_64Newtonsoft.Json772d3577fb88af3e29bcc99d17eb2f54Newtonsoft.Json.ni.dll
2018-12-14 17:04 – 2018-12-14 17:04 – 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareSiUSBXp.dll
2019-05-05 12:28 – 2019-05-05 12:28 – 000547840 _____ (The Chromium Authors) [File not signed] C:Program Files (x86)Epic GamesLauncherEngineBinariesThirdPartyCEF3Win64chrome_elf.dll
2018-12-18 13:45 – 2018-12-18 13:45 – 001277952 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareLIBEAY32.dll
2018-12-18 13:45 – 2018-12-18 13:45 – 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwaressleay32.dll
2019-11-01 20:42 – 2019-11 -01 20:42 – 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)OriginLIBEAY32.dll
2019-11-01 20:42 – 2019-11-01 20:42 – 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:Program Files (x86)Originssleay32.dll
2019-11-01 20:42 – 2019-11-01 20:42 – 001611264 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)Originplatformsqwindows.dll
2019-11-01 20:42 – 2019-11-01 20:42 – 005487104 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)OriginQt5Core.dll
2019-11-01 20:42 – 2019-11-01 20:42 – 005841920 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)OriginQt5Gui.dll
2019-11-01 20:42 – 2019-11-01 20:42 – 001179136 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)OriginQt5Network.dll
2019-11-01 20:42 – 2019-11-01 20:42 – 005089792 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)OriginQt5Widgets.dll
2019-11-01 20:42 – 2019-11-01 20:42 – 000184832 _____ (The Qt Company Ltd) [File not signed] C:Program Files (x86)OriginQt5Xml.dll
2018-12-03 14:42 – 2018-12-03 14:42 – 000025600 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqgif.dll
2018-12-03 17:20 – 2018-12-03 17:20 – 000034816 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqicns.dll
2018-12-03 14:41 – 2018-12-03 14:41 – 000025600 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqico.dll
2018-12-03 14:43 – 2018-12-03 14:43 – 000364032 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqjpeg.dll
2018-12-03 17:19 – 2018-12-03 17:19 – 000021504 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqsvg.dll
2018 -12-03 17:20 – 2018-12-03 17:20 – 000019968 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqtga.dll
2018-12-03 17:20 – 2018-12-03 17:20 – 000330752 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqtiff.dll
2018-12-03 17:20 – 2018-12-03 17:20 – 000019456 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqwbmp.dll
2018-12-03 17:20 – 2018-12-03 17:20 – 000411648 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareimageformatsqwebp.dll
2018-12-03 14:44 – 2018-12-03 14:44 – 001196032 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwareplatformsqwindows.dll
2018-12-03 17:37 – 2018-12-03 17:37 – 000049152 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtla bsfolderlistmodelqmlfolderlistmodelplugin.dll
2018-12-03 17:36 – 2018-12-03 17:36 – 000030720 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtlabssettingsqmlsettingsplugin.dll
2018-12-03 14:31 – 2018-12-03 14:31 – 000024576 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Concurrent.dll
2019-01-29 19:10 – 2019-01-29 19:10 – 005086208 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Core.dll
2018-12-03 14:36 – 2018-12-03 14:36 – 005337600 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Gui.dll
2018-12-03 17:48 – 2018-12-03 17:48 – 000576512 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Multimedia.dll
2018-12-03 14:35 – 2018-12-03 14:35 – 001043968 _____ (The Qt Company Ltd.) [File not signed] C:Program Fi les (x86)CorsairCORSAIR iCUE SoftwareQt5Network.dll
2018-12-03 17:39 – 2018-12-03 17:39 – 003348480 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Qml.dll
2018-12-03 17:31 – 2018-12-03 17:31 – 003169792 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Quick.dll
2018-12-03 17:51 – 2018-12-03 17:51 – 000142336 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5QuickControls2.dll
2018-12-03 17:51 – 2018-12-03 17:51 – 000847872 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5QuickTemplates2.dll
2018-12-03 17:48 – 2018-12-03 17:48 – 000326656 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Scxml.dll
2018-12-03 17:19 – 2018-12-03 17:19 – 000263680 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86) CorsairCORSAIR iCUE SoftwareQt5Svg.dll
2018-12-03 14:40 – 2018-12-03 14:40 – 004525568 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Widgets.dll
2018-12-03 17:59 – 2018-12-03 17:59 – 000444416 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5WinExtras.dll
2018-12-03 14:30 – 2018-12-03 14:30 – 000147456 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQt5Xml.dll
2018-12-03 17:45 – 2018-12-03 17:45 – 000045568 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtGraphicalEffectsprivateqtgraphicaleffectsprivate.dll
2018-12-03 17:45 – 2018-12-03 17:45 – 000056320 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtGraphicalEffectsqtgraphicaleffectsplugin.dll
2018-12-03 17:36 – 2018-12-03 17:36 – 000014848 _____ (T he Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQmlModels.2modelsplugin.dll
2018-12-03 17:37 – 2018-12-03 17:37 – 000052736 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQmlStateMachineqtqmlstatemachine.dll
2018-12-03 17:36 – 2018-12-03 17:36 – 000014848 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQuick.2qtquick2plugin.dll
2018-12-03 17:57 – 2018-12-03 17:57 – 000446976 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQuickControls.2qtquickcontrols2plugin.dll
2018-12-03 17:52 – 2018-12-03 17:52 – 000269312 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQuickControlsqtquickcontrolsplugin.dll
2018-12-03 17:51 – 2018-12-03 17:51 – 000115200 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCO RSAIR iCUE SoftwareQtQuickDialogsdialogplugin.dll
2018-12-03 17:49 – 2018-12-03 17:49 – 000036864 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQuickDialogsPrivatedialogsprivateplugin.dll
2018-12-03 17:37 – 2018-12-03 17:37 – 000072192 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQuickLayoutsqquicklayoutsplugin.dll
2018-12-03 17:52 – 2018-12-03 17:52 – 000260608 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQuickTemplates.2qtquicktemplates2plugin.dll
2018-12-03 17:37 – 2018-12-03 17:37 – 000014848 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE SoftwareQtQuickWindow.2windowplugin.dll
2018-12-03 14:43 – 2018-12-03 14:43 – 000122368 _____ (The Qt Company Ltd.) [File not signed] C:Program Files (x86)CorsairCORSAIR iCUE Softwarestylesqwindowsvistastyle.dll[1 9659002]==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:ProgramDataTEMP:FD268286 [146]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLMSYSTEMCurrentControlSetControlSafeBootMinimalMBAMService => ""="Service"
HKLMSYSTEMCurrentControlSetControlSafeBootNetworkMBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU.DEFAULT…localhost -> localhost
IE trusted site: HKU.DEFAULT…webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKUS-1-5-21-2096388356-1422183332-1631676226-1001…localhost -> localhost
IE trusted site: HKUS-1-5-21-2096388356-1422183332-1631676226-1001…webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hos ts.)

2017-09-29 15:46 – 2019-01-05 13:02 – 000000826 _____ C:WINDOWSsystem32driversetchosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLMSystemCurrentControlSetControlSession ManagerEnvironment\Path -> C:Program FilesOculusSupportoculus-runtime;C:WINDOWSsystem32;C:WINDOWS;C:WINDOWSSystem32Wbem;C:WINDOWSSystem32WindowsPowerShellv1.0;C:WINDOWSSystem32OpenSSH;C:Program Files (x86)NVIDIA CorporationPhysXCommon;C:Program FilesNVIDIA CorporationNVIDIA NvDLISR;%SystemRoot%system32;%SystemRoot%;%SystemRoot%System32Wbem;%SYSTEMROOT%System32WindowsPowerShellv1.0;%SYSTEMROOT%System32OpenSSH;C:Program FilesMicrosoft SQL Server130ToolsBinn;C:Program Filesdotnet;C:Program FilesMicrosoft SQL ServerClient SDKODBC170ToolsBinn;C:Program FilesGitcmd;C:Program Files (x86)Microsoft SQL Server150DTSBinn
HKUS-1-5-21- 2096388356-1422183332-1631676226-1001Control PanelDesktop\Wallpaper -> D:Mixwallpaperasphalt-dark-dawn-endless-531321.jpg
HKUS-1-5-80-3238277391-1891473654-1195688043-4149050645-2494734967Control PanelDesktop\Wallpaper -> C:WindowsWebWallpaperWindowsimg0.jpg
DNS Servers: 192.168.1.1
HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesSystem => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{626CE5A6-C6A0-4713-B135-CCFAB59781CE}] => (Allow) C:Program Files (x86)SteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtourscfg.exe (Valve -> )
FirewallRules: [{DCBF6687-0E7F-46B8-B5A2-55EC5A6D944D}] => (Allow) C:Program Files (x86)SteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtourscfg.exe (Valve -> )
FirewallRules: [{1D14B6F6-04E7-4D82-9E12-55770278AAD8}] => (Allow) C:Program Files (x86)SteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtours.exe (Valve -> )
FirewallRules: [{BBBB4BD1-B580-446C-8F5D-B38542D23B9D}] => (Allow) C:Program Files (x86)SteamsteamappscommonSteamVRtoolssteamvr_environmentsgamebinwin64steamtours.exe (Valve -> )
FirewallRules: [{89B6B8E8-33E2-4988-8B8C-76ED1DD57496}] => (Allow) C:Program Files (x86)SteamsteamappscommonSteamVRbinwin32vrstartup.exe (Valve -> Valve Corporation)
FirewallRules: [{BB231CF5-7F5D-4327-87B2-C662F42ABA13}] => (Allow) C:Program Files (x86)SteamsteamappscommonSteamVRbinwin32v rstartup.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{D3749544-EE28-48C6-9969-CFC54709F5A9}C:program files (x86)origin gamesapexr5apex.exe] => (Allow) C:program files (x86)origin gamesapexr5apex.exe No File
FirewallRules: [TCP Query User{3A1B6F8F-D196-4EED-82A6-612B091B9E2C}C:program files (x86)origin gamesapexr5apex.exe] => (Allow) C:program files (x86)origin gamesapexr5apex.exe No File
FirewallRules: [UDP Query User{3A724935-C617-4DAC-AE87-9EAF4BBBE4C9}D:gamesborderlands3oakgamebinarieswin64borderlands3.exe] => (Allow) D:gamesborderlands3oakgamebinarieswin64borderlands3.exe (Gearbox Software LLC -> Gearbox Software)
FirewallRules: [TCP Query User{6D303BEB-62EE-4150-AEC1-F320B23F6EEA}D:gamesborderlands3oakgamebinarieswin64borderlands3.exe] => (Allow) D:gamesborderlands3oakgamebinarieswin64borderlands3.exe (Gearbox Software LLC -> Gearbox Software)
FirewallRules: [{6257FFC7-3F2C-4C59-9F9D-F2FC8ACDB001}] => (Allow) C:Program Files (x86)SteamsteamappscommonDayZDayZ_x64.exe No File
FirewallRules: [{F56F26E2-1CFB-4E2F-A138-624265827238}] => (Allow) C:Program Files (x86)SteamsteamappscommonDayZDayZ_x64.exe No File
FirewallRules: [{0E4D3E7C-914B-449B-8F45-AEFBAF929E25}] => (Allow) C:Program Files (x86)SteamsteamappscommonDayZDayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{9422147D-8BC9-4CED-B191-B9DA11F2525A}] => (Allow) C:Program Files (x86)SteamsteamappscommonDayZDayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{A82AFEB7-CC23-4A02-9D40-972FDDC69269}] => (Allow) C:Program Files (x86)SteamsteamappscommonDayZDayZ_BE.exe No File
FirewallRules: [{30E7082F-966F-4A21-9337-63E862044551}] => (Allow) C:Program Files (x86)SteamsteamappscommonDayZDayZ_BE.exe No File
FirewallRules: [UDP Query User{BF3DB99F-663E-43FA-A179-D9B27394B4BB}C:program files (x86)steamsteamappscommondon’t starve togetherbindontstarve_dedicated_server_nullrenderer.exe] => (Allow) C:program files (x86)steamsteamappscommondon't starve togetherbindontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [TCP Query User{040286FE-F560-4E84-B155-7F90F279EB8E}C:program files (x86)steamsteamappscommondon’t starve togetherbindontstarve_dedicated_server_nullrenderer.exe] => (Allow) C:program files (x86)steamsteamappscommondon't starve togetherbindontstarve_dedicated_server_nullrenderer.exe () [File not signed]
FirewallRules: [{E48A2974-E1EA-473C-83AE-5C349A36F942}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9B5F51EB-5B93-4D8F-AEE7-0EE7193473F9}] => (Allow) C:Program FilesMicrosoft OfficerootOffic e16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{578EAB06-CF84-4D31-A5EB-44C16327B619}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F6A44EA4-25A1-4070-8102-464D6713BDE1}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{5E4BA264-6E92-49FA-8301-1653078F4341}C:usersdorotadesktopfactorio.v0.17.37binx64factorio.exe] => (Allow) C:usersdorotadesktopfactorio.v0.17.37binx64factorio.exe (Wube Software) [File not signed]
FirewallRules: [TCP Query User{61DF6B17-6342-43DC-BE97-9AA201A0A946}C:usersdorotadesktopfactorio.v0.17.37binx64factorio.exe] => (Allow) C:usersdorotadesktopfactorio.v0.17.37binx64factorio.exe (Wube Software) [File not signed]
FirewallRules: [UDP Query User{64F9690E-3D63-415D-8F79-D8B15F81942C}C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{213F391A-ECB3-458D-B3AF-AD66E448A4F3}C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe] => (Allow) C:program files (x86)epic gameslauncherportalbinarieswin64epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{38F5F944-5D12-4D42-8522-E3B04AE27271}C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe] => (Block) C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C42AD35A-FAD3-4B5F-BBC4-648E0B3C68FF}C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe] => (Block) C:program files (x86)epic gameslauncherportalbinarieswin32epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B104DC32-8706-4451-B195-643EC7B21DC2}G:gamesage of mythology extended editionaomx.exe] => (Allow) G:gamesage of mythology extended editionaomx.exe No File
FirewallRules: [TCP Query User{51109BEE-9BD1-4EDA-B054-86E3AA388F1A}G:gamesage of mythology extended editionaomx.exe] => (Allow) G:gamesage of mythology extended editionaomx.exe No File
FirewallRules: [UDP Query User{43B3B612-8A87-4B9E-B7E7-BD02E9BC0220}C:program files (x86)age of mythology extended editionaomx.exe] => (Allow) C:program files (x86)age of mythology extended editionaomx.exe (Ensemble Studios) [File not signed]
FirewallRules: [TCP Query User{3E4F7C4B-1CBE-496A-8E7B-31F516C37A22}C:program files (x86)age of mythology extended editionaomx.exe] => (Allow) C:program files (x86)age of mythology extended editionaomx.exe (Ensemble Studios) [File not signed]
FirewallRules: [UDP Query User{7C1E714E-2F8F-447C-9594-124874A94986}C:program files (x86)steamsteamappscommondead by daylightdeadbydaylightbinarieswin64deadbydaylight-win64-shipping.exe] => (Allow) C:program files (x86)steamsteamappscommondead by daylightdeadbydaylightbinarieswin64deadbydaylight-win64-shipping.exe No File
FirewallRules: [TCP Query User{754BD8F6-F3DD-4698-87FC-2E05B0A2AEF9}C:program files (x86)steamsteamappscommondead by daylightdeadbydaylightbinarieswin64deadbydaylight-win64-shipping.exe] => ( Allow) C:program files (x86)steamsteamappscommondead by daylightdeadbydaylightbinarieswin64deadbydaylight-win64-shipping.exe No File
FirewallRules: [{6FB739BA-9B08-453C-BC7D-26454B1AA681}] => (Allow) C:Program Files (x86)SteamsteamappscommonDead by DaylightDeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{D0DC8580-A83E-4B4E-83AE-3701F9B917B6}] => (Allow) C:Program Files (x86)SteamsteamappscommonDead by DaylightDeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{325F44B5-E670-456B-9777-43D17E8C90F1}] => (Allow) C:UsersDorotaAppDataRoaminguTorrentuTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{653058AB-AE11-4783-8B61-130BFE17F15B}] => (Allow) C:UsersDorotaAppDataRoaminguTorrentuTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{0516A35B-EBA6-41CF-88B9-6D287B4F2A1A}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A55319AD-9C46-451A-B5E2-378C5CB440FD}] => (Allow) C:Program Files (x86)Steambincefcef.win7x64steamwebhelp er.exe (Valve -> Valve Corporation)
FirewallRules: [{92E4AFF3-FB98-4738-8D82-5E401CEDCDBD}] => (Allow) C:UsersDorotaAppDataLocalMiPhoneManagermainMiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [UDP Query User{9E899774-DAAE-48AE-A0DA-1C3CC1C84A24}C:usersdorotadownloadsnová složkaqdslrdashboard.exe] => (Allow) C:usersdorotadownloadsnová složkaqdslrdashboard.exe No File
FirewallRules: [TCP Query User{E77311B0-B53D-4DAE-8635-0AAC9DD5F05B}C:usersdorotadownloadsnová složkaqdslrdashboard.exe] => (Allow) C:usersdorotadownloadsnová složkaqdslrdashboard.exe No File
FirewallRules: [{C309E336-3A12-4838-AA45-532C16FE34C2}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{098DC657-E62E-4162-805A-EEA3A098E9EC}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3B5D41F9-FC4A-4EF8-A746-6DC7E5152290}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{C2146DA8-ADFB-4A2E-8E0B-F6A1FA121A09}] => (Allow) C:Program Files (x86)SteamSteam.exe (Valve -> Valve Corporation)
FirewallRules: [{A75B19F0-B354-44B3-B29E-1770EA6CC043}] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No File
FirewallRules: [{F732757F-EEA4-4216-A0C6-543D3B862AB9}] => (Allow) C:Program Files (x86)Steambincefcef.win7steamwebhelper.exe No File
FirewallRules: [{A5B3E18C-1C23-4D8A-8131-A3B78B0498A2}] => (Allow) C:Program Files (x86)SteamsteamappscommonMonster Hunter WorldMonsterHunterWorld.exe No File
FirewallRules: [{80F29D48-53E3-4FB4-9FFF-D1B7A4C37647}] => (Allow) C:Program Files (x86)SteamsteamappscommonMonster Hunter WorldMonsterHunterWorld.exe No File
FirewallRules: [{A3C199A3-C68F-4A28-AAB4-0FE400AFBFEF}] => (Allow) C:Program FilesOculusSupportoculus-runtimeOVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{06882886-29E5-4A1A-8B10-97311A9C2DFC}] => (Allow) C:Program FilesOculusSupportoculus-runtimeOVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{A5E7F190-E24D-4530-8670-6809E09B83C1}] => (Allow) C:Program FilesOculusSupportoculus-runtimeOVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{111CD781-4206-4698-B7A7-0B4F38F20EC0}] => (Allow) C:Pr ogram FilesOculusSupportoculus-runtimeOVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{D53E68B6-3D44-4863-9B35-C1C25EEAA160}] => (Allow) C:Program FilesOculusSupportoculus-runtimeOVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{4CA6C224-11D5-4E5C-B039-44B6755ECE6E}] => (Allow) C:Program FilesOculusSupportoculus-runtimeOVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC)
FirewallRules: [{87BF8DD2-0DCB-4F72-A20F-1707C6018F59}] => (Allow) C:Program FilesOculusSupportoculus-dashdashbinOculusDash.exe (Oculus VR, LLC -> )
FirewallRules: [{36BE5CB0-ED0B-4F46-A565-42CCE63B89FF}] => (Allow) C:Program FilesOculusSupportoculus-dashdashbinOculusDash.exe (Oculus VR, LLC -> )
FirewallRules: [{671ED512-1B18-4272-84C9-34D08B5DEE02}] => (Allow) C:Program FilesOculusSupportoculus-worldsHome2.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A296373F-1C2E-4819-87F2-06C8F2C3DF05}] => (Allow) C:Program FilesOculusSupportoculus-worldsHome2.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{8B2C91F8-D394-4001-AE10-A666B54E177F}] => (Allow) C:Program FilesOculu sSupportoculus-worldsEngineBinariesWin64UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{13778E66-3E62-49B2-886B-186879010742}] => (Allow) C:Program FilesOculusSupportoculus-worldsEngineBinariesWin64UnrealCEFSubProcess.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{6045A0F8-3478-45FD-A960-E5904634D358}] => (Allow) C:Program FilesOculusSupportoculus-worldsHome2BinariesWin64Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)
FirewallRules: [{8A50ACCC-9FFF-432F-BDF0-BC97A51E2B2C}] => (Allow) C:Program FilesOculusSupportoculus-worldsHome2BinariesWin64Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.)
FirewallRules: [{B02B148A-B816-4DF4-92E7-5156D1455F34}] => (Allow) C:Program FilesOculusSupportoculus-clientOculusClient.exe (Oculus VR, LLC) [File not signed]
FirewallRules: [{C3224F92-0474-43EE-8673-E094D7271E42}] => (Allow) C:Program FilesOculusSupportoculus-clientOculusClient.exe (Oculus VR, LLC) [File not signed]
FirewallRules: [{945795FC-74C7-44CE-80B4-1ECEC11DFB9B}] => (Allow) C:Program Files (x86)SteamsteamappscommonFORMFORM.exe () [File not signed]
FirewallRules: [{7C4EBEDA-93E1-47D8-B30C-9C562F75B009}] => (Allow) C:Program Files (x86)SteamsteamappscommonFORMFORM.exe () [File not signed]
FirewallRules: [{AEA8AAE0-7D20-4BD4-A3FF-8FA524809E5C}] => (Allow) C:Program FilesUnityEditorUnity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{5FC9389E-8EE4-41EC-B6FF-62C1ABD57CEE}] => (Block) C:Program FilesUnityEditorUnity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{1520A11E-054C-41E4-8625-5373C50F2810}C:usersdorotadesktoppistol.whippistol whippistol whip.exe] => (Allow) C:usersdorotadesktoppistol.whippistol whippistol whip.exe No File
FirewallRules: [UDP Query User{30AAA07F-B884-4061-AEAE-F9FAFD0EC2F4}C:usersdorotadesktoppistol.whippistol whippistol whip.exe] => (Allow) C:usersdorotadesktoppistol.whippistol whippistol whip.exe No File
FirewallRules: [TCP Query User{587DF470-BDFD-408C-88FD-447EFF1CBF94}D:gamespistol.whippistol whippistol whip.exe] => (Block) D:gamespistol.whippistol whippistol whip.exe () [File not signed]
FirewallRules: [UDP Query User{8AF04CB8-AC90-4525-A734-E50AFBD63B20}D:gamespistol.whippistol whippistol whip.exe] => (Block) D:gamespistol.whippistol whippistol whip.exe () [File not signed]
FirewallRules: [TCP Query User{4AE94238-1A84-4762-B7F2-E23974E4AD4E}D:_programyvisualstudiocommon7idewcfsvchost.exe] => (Allow) D:_programyvisualstudiocommon7idewcfsvchost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{4E7DB29C-6672-406E-B9C7-12BCE60E0C2D}D:_programyvisualstudiocommon7idewcfsvchost.exe] => (Allow) D:_programyvisualstudio common7idewcfsvchost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A0F5D20-AFBA-408F-A1AA-26DEF9379992}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{178DB4E6-8CA8-4627-8063-3C081C6571DE}] => (Allow) C:Program FilesNVIDIA CorporationNvContainernvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D7520FC-A9C4-4BC6-9C76-A53CF6D9141D}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{55815C8C-3254-4BD1-ADBD-5C455D54016C}] => (Allow) C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{051677F4-1722-4896-8E16-1C5770A9A7A7}] => (Allow) C:Program FilesMicrosoft OfficerootOffice16outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A3CA376-2597-4F06-AD10-96F9F760A4AA}] => (Allow) C:Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C3EA5507-D870-4E1B-A8BB-6CE4D7177759}] => (Allow) C:Program Files (x86)GoogleChromeApplicationchrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

==================== Faulty Device Manager Devices ============

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: ========================

Application errors:
==================
Error: (04/16/2020 11:13:51 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7064,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (04/16/2020 11:13:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: MicrosoftEdgeCP.exe, version: 11.0.18362.1, time stamp: 0xceb8cbe1
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000409
Fault offset: 0x000000000000049d
Faulting process id: 0x4240
Faulting application start time: 0x01d61431d4f481f6
Faulting application path: C:WindowsSystem32MicrosoftEdgeCP.exe
Faulting module path: unknown
Report Id: 88bb470d-8396-4cef-b85b-fd1a947c2921
Faulting package full name: Microsoft.MicrosoftEdge_44.18362.449.0_neutral__8wekyb3d8bbwe
Faulting package-relative application ID: MicrosoftEdge

Error: (04/16/2020 10:52:35 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5632,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (04/16/2020 09:48:24 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14072,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32 configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (04/16/2020 09:40:10 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2956,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (04/16/2020 08:52:56 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (20408,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (04/16/2020 08:31:43 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4528,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

Error: (04/16/2020 08:16:06 PM) (Source: ESENT) (Eve ntID: 455) (User: )
Description: svchost (20820,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) occurred while opening logfile C:WINDOWSsystem32configsystemprofileAppDataLocalTileDataLayerDatabaseEDB.log.

System errors:
=============
Error: (04/16/2020 06:07:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9MWPM2CQNLHN-Microsoft.GamingServices.

Error: (04/16/2020 11:22:18 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d02: 9MWPM2CQNLHN-Microsoft.GamingServices.

Error: (04/16/2020 08:06:44 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: W indows failed to install the following update with error 0x80073d02: 9MWPM2CQNLHN-Microsoft.GamingServices.

Error: (04/15/2020 07:54:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JOAKH6R)
Description: The server Microsoft.MicrosoftOfficeHub_18.2002.1101.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXt4mh7c9swwc5cmd5jgmtmwcfmvkddpn1.mca did not register with DCOM within the required timeout.

Error: (04/15/2020 07:54:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JOAKH6R)
Description: The server Microsoft.Wallet_2.4.18324.0_x64__8wekyb3d8bbwe!App.AppXgvxkrr1tm1jwgecmqbxe81yfbwpjdn1h.mca did not register with DCOM within the required timeout.

Error: (04/15/2020 07:54:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JOAKH6R)
Description: The server microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca did not register with DCOM within the required timeout.

Error: (04/14/2020 09:12:49 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Encrypted volume check: Volume information on E: cannot be read.

Error: (04/14/2020 09:12:25 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: The ScRegSetValueExW call failed for Start with the following error:
Access is denied.

CodeIntegrity:
===================================

Date: 2020-04-16 23:08:25.521
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 23:07:36.308
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 23:07:36.210
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 23:07:18.396
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 23:07:15.711
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 23:07:15.656
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 23:07:15.588
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86a swhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-16 23:07:15.558
Description:
Code Integrity determined that a process (DeviceHarddiskVolume4Program Files (x86)AVAST SoftwareBrowserApplicationAvastBrowser.exe) attempted to load DeviceHarddiskVolume4Program FilesAVAST SoftwareAvastx86aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1.30 06/28/2017
Motherboard: MSI Z270-A PRO (MS-7A71)
Processor: Intel® Core™ i7-7700K CPU @ 4.20GHz
Percentage of memory in use: 75%
Total physical RAM: 8156.66 MB
Available physical RAM: 2017.89 MB
Total Virtual: 22492.66 MB
Available Virtual: 12660.91 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.29 GB) (Free:18.6 GB) N TFS
Drive d: (Nový svazek) (Fixed) (Total:931.39 GB) (Free:315.12 GB) NTFS
Drive f: (ESD-USB) (Removable) (Total:28.62 GB) (Free:0.82 GB) FAT32

\?Volume{d0538338-a3bf-4b1c-a115-65f3eed6e819} (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\?Volume{97fb0c80-cbff-b10d-db75-e48ef1994d85} () (Fixed) (Total:19.03 GB) (Free:0 GB) NTFS
\?Volume{55ee7fcf-94a6-4fee-bd67-91ad14de3d4b} () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10 ) (Size: 28.6 GB) (Disk ID: 6879C5F1)
Partition 1: (Active) – (Size=28.6 GB) – (Type=0C)
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 4.

==================== End of Addition.txt =======================

Edited by Oh My!, Yesterday, 08:07 AM.